316 matches found
CVE-2025-24865
The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password...
CVE-2025-23411
mySCADA myPRO Manager is vulnerable to cross-site request forgery CSRF, which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website...
CVE-2025-22896
mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information...
CVE-2025-22896
mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information...
CVE-2025-23411
mySCADA myPRO Manager is vulnerable to cross-site request forgery CSRF, which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website...
CVE-2025-25067 mySCADA myPRO Manager OS Command Injection
mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands...
CVE-2025-25067
CVE-2025-25067 affects mySCADA myPRO Manager (HMI/SCADA). An OS command injection vulnerability originates from improper input validation, enabling a remote attacker to execute arbitrary OS commands over the network. CISA/ICS guidance notes the administrative web interface can be accessed without...
CVE-2025-25067 mySCADA myPRO Manager OS Command Injection
mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands...
CVE-2025-23411 mySCADA myPRO Manager Cross-Site Request Forgery
mySCADA myPRO Manager is vulnerable to cross-site request forgery CSRF, which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website...
CVE-2025-23411
CVE-2025-23411 affects the mySCADA myPRO Manager. The connected sources confirm a cross-site request forgery (CSRF) vulnerability that could allow an attacker to obtain sensitive information by tricking a user to visit a malicious site. The vulnerability details across sources consistently descri...
CVE-2025-23411 mySCADA myPRO Manager Cross-Site Request Forgery
mySCADA myPRO Manager is vulnerable to cross-site request forgery CSRF, which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website...
CVE-2025-22896 mySCADA myPRO Manager Cleartext Storage of Sensitive Information
mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information...
CVE-2025-22896 mySCADA myPRO Manager Cleartext Storage of Sensitive Information
mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information...
CVE-2025-22896
CVE-2025-22896 affects mySCADA myPRO Manager, where credentials are stored in cleartext. The vulnerability enables an attacker to obtain sensitive information via the affected component, with network access and no required user interaction per CVSS vectors in the source records. Connected documen...
CVE-2025-24865 mySCADA myPRO Manager Missing Authentication for Critical Function
The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password...
CVE-2025-24865 mySCADA myPRO Manager Missing Authentication for Critical Function
The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password...
CVE-2025-24865
The CVE-2025-24865 entry concerns mySCADA myPRO Manager where the administrative web interface can be accessed without authentication. The connected documents describe that this could let an attacker retrieve sensitive information and upload files without credentials, and the PT-2025-7040 entry a...
mySCADA myPRO 跨站请求伪造漏洞
mySCADA myPRO is a professional HMI/SCADA system from mySCADA designed for the visualization and control of industrial processes. A cross-site request forgery vulnerability exists in mySCADA myPRO that stems from not properly validating a request. An attacker could exploit this vulnerability to...
mySCADA myPRO 操作系统命令注入漏洞
mySCADA myPRO is a professional HMI/SCADA system from mySCADA designed for the visualization and control of industrial processes. An operating system command injection vulnerability exists in mySCADA myPRO that originates from not properly validating input. An attacker could exploit this...
PT-2025-7040 · Myscada · Myscada Mypro Manager
Name of the Vulnerable Software and Affected Versions: mySCADA myPRO Manager affected versions not specified Description: The administrative web interface of mySCADA myPRO Manager can be accessed without authentication, which could allow an unauthorized attacker to retrieve sensitive information...