Vulnerabilities > Myscada > Mypro > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-07-02 CVE-2024-4708 Use of Hard-coded Credentials vulnerability in Myscada Mypro
mySCADA myPRO uses a hard-coded password which could allow an attacker to remotely execute code on the affected device.
network
low complexity
myscada CWE-798
critical
 9.8
9.8
2022-04-11 CVE-2022-0999 OS Command Injection vulnerability in Myscada Mypro 7/7.0.26/8.20.0
An authenticated user may be able to misuse parameters to inject arbitrary operating system commands into mySCADA myPRO versions 8.25.0 and prior.
network
low complexity
myscada CWE-78
critical
 9.0
9.0
2021-12-23 CVE-2021-44453 OS Command Injection vulnerability in Myscada Mypro 7/7.0.26
mySCADA myPRO: Versions 8.20.0 and prior has a vulnerable debug interface which includes a ping utility, which may allow an attacker to inject arbitrary operating system commands.
network
low complexity
myscada CWE-78
critical
 10.0
10