ГлавнаяУязвимости → CVE-2025-24865
10критическая

CVE-2025-24865

Описание

The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password.

Затрагиваемое ПО
Myscada Mypro
CVSS
Балл10 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Источники
https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-16https://www.myscada.org/contacts/https://www.myscada.org/downloads/mySCADAPROManager/