mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands.
Advisories
Source ID Title
EUVD EUVD EUVD-2023-32354 mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Fri, 17 Jan 2025 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published:

Updated: 2025-01-17T17:05:06.847Z

Reserved: 2023-04-03T21:34:49.136Z

Link: CVE-2023-28716

cve-icon Vulnrichment

Updated: 2024-08-02T13:43:23.746Z

cve-icon NVD

Status : Modified

Published: 2023-04-27T23:15:14.963

Modified: 2025-01-17T17:15:08.537

Link: CVE-2023-28716

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.