The entire parent directory - C:\ScadaPro and its sub-directories and
files are configured by default to allow user, including unprivileged
users, to write or overwrite files.
Fixes

Solution

No solution given by the vendor.


Workaround

Measuresoft recommends that users manually reconfigure the vulnerable directories so that they are not writable by everyone.

History

Wed, 27 Aug 2025 22:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Wed, 18 Jun 2025 18:15:00 +0000

Type Values Removed Values Added
First Time appeared Measuresoft
Measuresoft scadapro Server
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:a:measuresoft:scadapro_server:6.9.0.0:*:*:*:*:*:*:*
Vendors & Products Measuresoft
Measuresoft scadapro Server

cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published:

Updated: 2025-08-27T21:23:00.955Z

Reserved: 2024-04-12T20:04:14.046Z

Link: CVE-2024-3746

cve-icon Vulnrichment

Updated: 2024-08-01T20:20:01.065Z

cve-icon NVD

Status : Analyzed

Published: 2024-04-30T20:15:08.827

Modified: 2025-06-18T17:54:52.187

Link: CVE-2024-3746

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.