myscada 漏洞与 CVE 列表(29)

产品(CPE): — CVE 数: 29

myscada 漏洞概览

汇总 myscada 相关全部产品的 CVE 与安全漏洞情报,包括 CVSS、EPSS、公开时间与漏洞情报数据。

常见弱点模式包括 路径处理缺陷与CSRF,在 生产负载与软件部署 使用场景中可能带来 文件覆盖 等风险。

相关漏洞数据主要来源于公开漏洞披露与安全公告,可用于评估历史漏洞暴露面与修复优先级。

漏洞分布趋势(近 24 个月)

显示 12029 CVE 数
«« 第一页 « 上一页 第 1 / 2 页 下一页 »
CVE 摘要 来源 最高 CVSS EPSS % 公开时间 更新时间
CVE-2025-25067 mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to execute arbitrary OS commands. [email protected] 9.3 1.73% 2025-02-13 2026-06-17
CVE-2025-24865 The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password. [email protected] 10.0 6.82% 2025-02-13 2026-06-17
CVE-2025-23411 mySCADA myPRO Manager is vulnerable to cross-site request forgery (CSRF), which could allow an attacker to obtain sensitive information. An attacker would need to trick the victim in to visiting an attacker-controlled website. [email protected] 5.1 0.56% 2025-02-13 2026-06-17
CVE-2025-22896 mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information. [email protected] 9.2 3.35% 2025-02-13 2026-06-17
CVE-2024-4708 mySCADA myPRO uses a hard-coded password which could allow an attacker to remotely execute code on the affected device. [email protected] 9.3 1.00% 2024-07-02 2026-06-17
CVE-2023-29169 mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. [email protected] 8.8 0.75% 2023-04-27 2026-06-17
CVE-2023-29150 mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. [email protected] 8.8 0.75% 2023-04-27 2026-06-17
CVE-2023-28716 mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. [email protected] 8.8 4.50% 2023-04-27 2026-06-17
CVE-2023-28400 mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. [email protected] 8.8 24.57% 2023-04-27 2026-06-17
CVE-2023-28384 mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands. [email protected] 8.8 44.81% 2023-04-27 2026-06-17
CVE-2022-2234 An authenticated mySCADA myPRO 8.26.0 user may be able to modify parameters to run commands directly in the operating system. [email protected] 9.9 41.47% 2022-08-24 2026-06-17
CVE-2021-33013 mySCADA myPRO versions prior to 8.20.0 does not restrict unauthorized read access to sensitive system information. [email protected] 8.2 0.76% 2022-05-13 2026-06-16
CVE-2021-33009 mySCADA myPRO versions prior to 8.20.0 allows an unauthenticated remote attacker to upload arbitrary files to the file system. [email protected] 7.5 1.19% 2022-05-13 2026-06-16
CVE-2021-33005 mySCADA myPRO versions prior to 8.20.0 allows an unauthenticated remote attacker to upload arbitrary files to arbitrary directories. [email protected] 7.5 1.49% 2022-05-13 2026-06-16
CVE-2021-27505 mySCADA myPRO versions prior to 8.20.0 does not restrict unauthorized read access to sensitive directory listing information. [email protected] 7.5 0.96% 2022-05-13 2026-06-16
CVE-2022-0999 An authenticated user may be able to misuse parameters to inject arbitrary operating system commands into mySCADA myPRO versions 8.25.0 and prior. [email protected] 8.8 1.30% 2022-04-11 2026-06-17
CVE-2021-44453 mySCADA myPRO: Versions 8.20.0 and prior has a vulnerable debug interface which includes a ping utility, which may allow an attacker to inject arbitrary operating system commands. [email protected] 10.0 1.42% 2021-12-23 2026-06-17
CVE-2021-43989 mySCADA myPRO Versions 8.20.0 and prior stores passwords using MD5, which may allow an attacker to crack the previously retrieved password hashes. [email protected] 7.5 0.65% 2021-12-23 2026-06-17
CVE-2021-43987 An additional, nondocumented administrative account exists in mySCADA myPRO Versions 8.20.0 and prior that is not exposed through the web interface, which cannot be deleted or changed through the regular web interface. [email protected] 9.8 1.18% 2021-12-23 2026-06-17
CVE-2021-43985 An unauthenticated remote attacker can access mySCADA myPRO Versions 8.20.0 and prior without any form of authentication or authorization. [email protected] 9.1 1.55% 2021-12-23 2026-06-17
«« 第一页 « 上一页 第 1 / 2 页 下一页 »
cvelogic Threat Intelligence