Vulnerabilities > Hitachienergy > Asset Suite > High

DATE CVE VULNERABILITY TITLE RISK
2023-09-11 CVE-2023-4816 Improper Authentication vulnerability in Hitachienergy Asset Suite
A vulnerability exists in the Equipment Tag Out authentication, when configured with Single Sign-On (SSO) with password validation in T214.
network
low complexity
hitachienergy CWE-287
8.8
2020-02-17 CVE-2019-18998 Authorization Bypass Through User-Controlled Key vulnerability in Hitachienergy Asset Suite 9.6.0
Insufficient access control in the web interface of ABB Asset Suite versions 9.0 to 9.3, 9.4 prior to 9.4.2.6, 9.5 prior to 9.5.3.2 and 9.6.0 enables full access to directly referenced objects.
network
low complexity
hitachienergy CWE-639
7.1