Vulnerabilities > Myscada

DATE	CVE	VULNERABILITY TITLE	RISK
2025-02-13	CVE-2025-22896	Cleartext Storage of Sensitive Information vulnerability in Myscada Mypro mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information. network low complexity myscada CWE-312	7.5
2025-02-13	CVE-2025-23411	Cross-Site Request Forgery (CSRF) vulnerability in Myscada Mypro mySCADA myPRO Manager is vulnerable to cross-site request forgery (CSRF), which could allow an attacker to obtain sensitive information. network low complexity myscada CWE-352	6.5
2025-02-13	CVE-2025-24865	Missing Authentication for Critical Function vulnerability in Myscada Mypro The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password. network low complexity myscada CWE-306 critical	9.8
2024-07-02	CVE-2024-4708	Use of Hard-coded Credentials vulnerability in Myscada Mypro mySCADA myPRO uses a hard-coded password which could allow an attacker to remotely execute code on the affected device. network low complexity myscada CWE-798 critical	9.8
2023-04-27	CVE-2023-28384	OS Command Injection vulnerability in Myscada Mypro mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. network low complexity myscada CWE-78	8.8
2023-04-27	CVE-2023-28400	OS Command Injection vulnerability in Myscada Mypro mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. network low complexity myscada CWE-78	8.8
2023-04-27	CVE-2023-28716	OS Command Injection vulnerability in Myscada Mypro mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. network low complexity myscada CWE-78	8.8
2023-04-27	CVE-2023-29150	OS Command Injection vulnerability in Myscada Mypro mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. network low complexity myscada CWE-78	8.8
2023-04-27	CVE-2023-29169	OS Command Injection vulnerability in Myscada Mypro mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. network low complexity myscada CWE-78	8.8
2022-08-24	CVE-2022-2234	OS Command Injection vulnerability in Myscada Mypro An authenticated mySCADA myPRO 8.26.0 user may be able to modify parameters to run commands directly in the operating system. network low complexity myscada CWE-78	8.8

Vulnerabilities > Myscada {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Myscada"}]}

Vulnerabilities > Myscada