Msm

This hub aggregates every CVE we track for Msm, a product in the ics ot iot space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 6 most recently published vulnerabilities affecting Msm.

• CVE-2023-33284Marval MSM through 14.19.0.12476 and 15.0 has a Remote Code Execution vulnerability. A remote attacker authenticated as any user is able to execute code in context of the web server.8.8Jun 7, 2023
• CVE-2023-33283Marval MSM through 14.19.0.12476 uses a static encryption key for secrets. An attacker that gains access to encrypted secrets can decrypt them by using this key.5.5Jun 7, 2023
• CVE-2023-33282Marval MSM through 14.19.0.12476 and 15.0 has a System account with default credentials. A remote attacker is able to login and create a valid session. This makes it possible to make backend calls ...9.8Jun 7, 2023
• CVE-2022-3353IEC 61850 MMS-Server Vulnerability in multiple Hitachi Energy Products5.9Feb 21, 2023
• CVE-2021-40336HTTP Response Splitting in Hitachi Energy’s MSM Product5.0Jul 25, 2022
• CVE-2021-40335Cross Site Request Forgery (CSRF) in Hitachi Energy’s MSM Product5.0Jul 25, 2022