Lucene search
K

316 matches found

NVD
NVD
added 2025/02/13 10:15 p.m.17 views

CVE-2025-24865

The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password...

10CVSS0.06987EPSS
Exploits1References3
OSV
OSV
added 2025/02/13 10:15 p.m.3 views

CVE-2025-23411

mySCADA myPRO Manager is vulnerable to cross-site request forgery CSRF, which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website...

6.5CVSS5.7AI score0.00573EPSS
Exploits0References3
OSV
OSV
added 2025/02/13 10:15 p.m.3 views

CVE-2025-22896

mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information...

7.5CVSS7.5AI score0.03437EPSS
Exploits1References3
NVD
NVD
added 2025/02/13 10:15 p.m.14 views

CVE-2025-22896

mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information...

9.2CVSS0.03437EPSS
Exploits1References3
NVD
NVD
added 2025/02/13 10:15 p.m.21 views

CVE-2025-23411

mySCADA myPRO Manager is vulnerable to cross-site request forgery CSRF, which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website...

6.5CVSS0.00573EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/02/13 9:35 p.m.20 views

CVE-2025-25067 mySCADA myPRO Manager OS Command Injection

mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands...

9.8CVSS0.01626EPSS
Exploits0References3
CVE
CVE
added 2025/02/13 9:35 p.m.92 views

CVE-2025-25067

CVE-2025-25067 affects mySCADA myPRO Manager (HMI/SCADA). An OS command injection vulnerability originates from improper input validation, enabling a remote attacker to execute arbitrary OS commands over the network. CISA/ICS guidance notes the administrative web interface can be accessed without...

9.8CVSS9.9AI score0.01626EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/13 9:35 p.m.14 views

CVE-2025-25067 mySCADA myPRO Manager OS Command Injection

mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands...

9.8CVSS9.9AI score0.01626EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/02/13 9:33 p.m.22 views

CVE-2025-23411 mySCADA myPRO Manager Cross-Site Request Forgery

mySCADA myPRO Manager is vulnerable to cross-site request forgery CSRF, which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website...

6.3CVSS0.00573EPSS
Exploits0References3
CVE
CVE
added 2025/02/13 9:33 p.m.76 views

CVE-2025-23411

CVE-2025-23411 affects the mySCADA myPRO Manager. The connected sources confirm a cross-site request forgery (CSRF) vulnerability that could allow an attacker to obtain sensitive information by tricking a user to visit a malicious site. The vulnerability details across sources consistently descri...

6.5CVSS6.2AI score0.00573EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/13 9:33 p.m.11 views

CVE-2025-23411 mySCADA myPRO Manager Cross-Site Request Forgery

mySCADA myPRO Manager is vulnerable to cross-site request forgery CSRF, which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website...

6.3CVSS6.2AI score0.00573EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/02/13 9:31 p.m.24 views

CVE-2025-22896 mySCADA myPRO Manager Cleartext Storage of Sensitive Information

mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information...

9.2CVSS0.03437EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/02/13 9:31 p.m.20 views

CVE-2025-22896 mySCADA myPRO Manager Cleartext Storage of Sensitive Information

mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information...

9.2CVSS8.4AI score0.03437EPSS
Exploits1References3
CVE
CVE
added 2025/02/13 9:31 p.m.111 views

CVE-2025-22896

CVE-2025-22896 affects mySCADA myPRO Manager, where credentials are stored in cleartext. The vulnerability enables an attacker to obtain sensitive information via the affected component, with network access and no required user interaction per CVSS vectors in the source records. Connected documen...

9.2CVSS8.4AI score0.03437EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2025/02/13 9:29 p.m.32 views

CVE-2025-24865 mySCADA myPRO Manager Missing Authentication for Critical Function

The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password...

10CVSS0.06987EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/02/13 9:29 p.m.14 views

CVE-2025-24865 mySCADA myPRO Manager Missing Authentication for Critical Function

The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password...

10CVSS9.6AI score0.06987EPSS
Exploits1References3
CVE
CVE
added 2025/02/13 9:29 p.m.117 views

CVE-2025-24865

The CVE-2025-24865 entry concerns mySCADA myPRO Manager where the administrative web interface can be accessed without authentication. The connected documents describe that this could let an attacker retrieve sensitive information and upload files without credentials, and the PT-2025-7040 entry a...

10CVSS9.6AI score0.06987EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2025/02/13 12:0 a.m.5 views

mySCADA myPRO 跨站请求伪造漏洞

mySCADA myPRO is a professional HMI/SCADA system from mySCADA designed for the visualization and control of industrial processes. A cross-site request forgery vulnerability exists in mySCADA myPRO that stems from not properly validating a request. An attacker could exploit this vulnerability to...

6.5CVSS6.6AI score0.00573EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/02/13 12:0 a.m.4 views

mySCADA myPRO 操作系统命令注入漏洞

mySCADA myPRO is a professional HMI/SCADA system from mySCADA designed for the visualization and control of industrial processes. An operating system command injection vulnerability exists in mySCADA myPRO that originates from not properly validating input. An attacker could exploit this...

9.8CVSS7.9AI score0.01626EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/02/13 12:0 a.m.4 views

PT-2025-7040 · Myscada · Myscada Mypro Manager

Name of the Vulnerable Software and Affected Versions: mySCADA myPRO Manager affected versions not specified Description: The administrative web interface of mySCADA myPRO Manager can be accessed without authentication, which could allow an unauthorized attacker to retrieve sensitive information...

10CVSS9.7AI score0.06987EPSS
Exploits1References13
Rows per page
Query Builder