CVE-2021-43984

mySCADA myPRO

CVSS 10 CRITICALEPSS 1.2%CWE-78

mySCADA myPRO: Versions 8.20.0 and prior has a feature where the firmware can be updated, which may allow an attacker to inject arbitrary operating system commands through a specific parameter.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Productos afectados

mySCADA · myPRO

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.cisa.gov/uscert/ics/advisories/icsa-21-355-01