Vulnerabilities > Myscada
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2025-02-13 | CVE-2025-22896 | Cleartext Storage of Sensitive Information vulnerability in Myscada Mypro mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information. | 7.5 |
2025-02-13 | CVE-2025-23411 | Cross-Site Request Forgery (CSRF) vulnerability in Myscada Mypro mySCADA myPRO Manager is vulnerable to cross-site request forgery (CSRF), which could allow an attacker to obtain sensitive information. | 6.5 |
2025-02-13 | CVE-2025-24865 | Missing Authentication for Critical Function vulnerability in Myscada Mypro The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password. | 9.8 |
2025-02-13 | CVE-2025-25067 | OS Command Injection vulnerability in Myscada Mypro mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands. | 9.8 |
2024-07-02 | CVE-2024-4708 | Use of Hard-coded Credentials vulnerability in Myscada Mypro mySCADA myPRO uses a hard-coded password which could allow an attacker to remotely execute code on the affected device. | 9.8 |
2023-04-27 | CVE-2023-28384 | OS Command Injection vulnerability in Myscada Mypro mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. | 8.8 |
2023-04-27 | CVE-2023-28400 | OS Command Injection vulnerability in Myscada Mypro mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. | 8.8 |
2023-04-27 | CVE-2023-28716 | OS Command Injection vulnerability in Myscada Mypro mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. | 8.8 |
2023-04-27 | CVE-2023-29150 | OS Command Injection vulnerability in Myscada Mypro mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. | 8.8 |
2023-04-27 | CVE-2023-29169 | OS Command Injection vulnerability in Myscada Mypro mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. | 8.8 |