Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Mypro
(Myscada)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 27 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-02-13 | CVE-2025-22896 | mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information. | Mypro | 7.5 | ||
| 2025-02-13 | CVE-2025-25067 | mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands. | Mypro | N/A | ||
| 2025-02-13 | CVE-2025-24865 | The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password. | Mypro | 9.8 | ||
| 2025-02-13 | CVE-2025-23411 | mySCADA myPRO Manager is vulnerable to cross-site request forgery (CSRF), which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website. | Mypro | 6.5 | ||
| 2023-04-27 | CVE-2023-28384 | mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. | Mypro | 8.8 | ||
| 2023-04-27 | CVE-2023-28716 | mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. | Mypro | 8.8 | ||
| 2023-04-27 | CVE-2023-28400 | mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. | Mypro | 8.8 |