Lucene search
+L

286 matches found

BDU FSTEC
BDU FSTEC
added 2025/02/18 12:0 a.m.6 views

The vulnerability of the mySCADA myPRO Manager platform, related to the manipulation of cross-site requests, allows a hacker to perform a CSRF attack.

The vulnerability of the mySCADA myPRO Manager platform is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor to perform a CSRF attack remotely...

7.5CVSS5.2AI score0.00573EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/18 12:0 a.m.8 views

The vulnerability of the mySCADA myPRO Manager platform, which exists due to the failure to take measures to neutralize certain elements, allows a perpetrator to execute arbitrary commands.

The vulnerability of the mySCADA myPRO Manager platform exists due to the failure to take measures to neutralize certain elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

10CVSS8.3AI score0.01626EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/17 12:0 a.m.9 views

The vulnerability in the web interface of the mySCADA myPRO Manager platform allows a perpetrator to gain unauthorized access to the software.

The vulnerability in the web interface of the mySCADA myPRO Manager control platform is related to the lack of authentication for a critical function. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to the software...

10CVSS8.1AI score0.06987EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/15 10:20 p.m.13 views

CVE-2025-25067

mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands...

9.8CVSS8AI score0.01626EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/15 10:20 p.m.11 views

CVE-2025-22896

mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information...

9.2CVSS6.6AI score0.03437EPSS
Exploits1References1
OSV
OSV
added 2025/02/13 10:15 p.m.5 views

CVE-2025-24865

The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password...

9.8CVSS5.8AI score0.06987EPSS
Exploits1References3
OSV
OSV
added 2025/02/13 10:15 p.m.2 views

CVE-2025-25067

mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands...

9.8CVSS7.8AI score0.01626EPSS
Exploits0References3
NVD
NVD
added 2025/02/13 10:15 p.m.17 views

CVE-2025-24865

The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password...

10CVSS0.06987EPSS
Exploits1References3
NVD
NVD
added 2025/02/13 10:15 p.m.14 views

CVE-2025-25067

mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands...

9.8CVSS0.01626EPSS
Exploits0References3
OSV
OSV
added 2025/02/13 10:15 p.m.3 views

CVE-2025-23411

mySCADA myPRO Manager is vulnerable to cross-site request forgery CSRF, which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website...

6.5CVSS5.7AI score0.00573EPSS
Exploits0References3
OSV
OSV
added 2025/02/13 10:15 p.m.4 views

CVE-2025-22896

mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information...

7.5CVSS7.5AI score0.03437EPSS
Exploits1References3
NVD
NVD
added 2025/02/13 10:15 p.m.15 views

CVE-2025-22896

mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information...

9.2CVSS0.03437EPSS
Exploits1References3
NVD
NVD
added 2025/02/13 10:15 p.m.21 views

CVE-2025-23411

mySCADA myPRO Manager is vulnerable to cross-site request forgery CSRF, which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website...

6.5CVSS0.00573EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/02/13 9:35 p.m.14 views

CVE-2025-25067 mySCADA myPRO Manager OS Command Injection

mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands...

9.8CVSS9.9AI score0.01626EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/02/13 9:35 p.m.20 views

CVE-2025-25067 mySCADA myPRO Manager OS Command Injection

mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands...

9.8CVSS0.01626EPSS
Exploits0References3
CVE
CVE
added 2025/02/13 9:35 p.m.92 views

CVE-2025-25067

CVE-2025-25067 affects mySCADA myPRO Manager (HMI/SCADA). An OS command injection vulnerability originates from improper input validation, enabling a remote attacker to execute arbitrary OS commands over the network. CISA/ICS guidance notes the administrative web interface can be accessed without...

9.8CVSS9.9AI score0.01626EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/02/13 9:33 p.m.22 views

CVE-2025-23411 mySCADA myPRO Manager Cross-Site Request Forgery

mySCADA myPRO Manager is vulnerable to cross-site request forgery CSRF, which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website...

6.3CVSS0.00573EPSS
Exploits0References3
CVE
CVE
added 2025/02/13 9:33 p.m.76 views

CVE-2025-23411

CVE-2025-23411 affects the mySCADA myPRO Manager. The connected sources confirm a cross-site request forgery (CSRF) vulnerability that could allow an attacker to obtain sensitive information by tricking a user to visit a malicious site. The vulnerability details across sources consistently descri...

6.5CVSS6.2AI score0.00573EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/13 9:33 p.m.11 views

CVE-2025-23411 mySCADA myPRO Manager Cross-Site Request Forgery

mySCADA myPRO Manager is vulnerable to cross-site request forgery CSRF, which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website...

6.3CVSS6.2AI score0.00573EPSS
Exploits0References3
CVE
CVE
added 2025/02/13 9:31 p.m.112 views

CVE-2025-22896

CVE-2025-22896 affects mySCADA myPRO Manager, where credentials are stored in cleartext. The vulnerability enables an attacker to obtain sensitive information via the affected component, with network access and no required user interaction per CVSS vectors in the source records. Connected documen...

9.2CVSS8.4AI score0.03437EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder