CVE-2021-44453

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1090%

EPSS Percentile34.24th

Published2021年12月23日

Last Modified2024年11月21日

Vulnerability Description

mySCADA myPRO: Versions 8.20.0 and prior has a vulnerable debug interface which includes a ping utility, which may allow an attacker to inject arbitrary operating system commands.

Affected Platforms (CPE)

📦

Myscada

Mypro

<= 8.20.0

References & Advisories

🔗 https://www.cisa.gov/uscert/ics/advisories/icsa-21-355-01

関連する脆弱性情報

CVE-2021-4398110.0

mySCADA myPRO: Versions 8.20.0 and prior has a feature to send emails, which may allow an attacker to inject arbitrary operating s...

CVE-2021-2265710.0

mySCADA myPRO: Versions 8.20.0 and prior has a feature where the API password can be specified, which may allow an attacker to inj...

CVE-2021-2319810.0

mySCADA myPRO: Versions 8.20.0 and prior has a feature where the password can be specified, which may allow an attacker to inject ...

CVE-2021-4398410.0

mySCADA myPRO: Versions 8.20.0 and prior has a feature where the firmware can be updated, which may allow an attacker to inject ar...