Lucene search
IcscertCVE-2023-28384HistoryApr 27, 2023 - 11:15 p.m.
CVE-2023-28384
2023-04-2723:15:14
CWE-78
icscert
web.nvd.nist.gov
32
cve-2023-28384
myscada mypro
os command injection
nvd
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.5
Confidence
High
EPSS
0.229
Percentile
96.6%
mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands.
Affected configurations
Node
myscadamyproRange≤8.26.0
CNA Affected
[
{
"vendor": "mySCADA Technologies",
"product": "mySCADA myPRO",
"versions": [
{
"status": "affected",
"version": "0",
"lessThanOrEqual": "8.26.0",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2023-28384
2023-04-27 23:15:14
metasploit
metasploit
mySCADA MyPRO Authenticated Command Injection (CVE-2023-28384)
2024-07-22 20:49:40
prion
prion
Design/Logic Flaw
2023-04-27 23:15:00
cvelist
cvelist
CVE-2023-28384 CVE-2023-28384
2023-04-27 22:09:56
zdt
zdt
mySCADA MyPRO Authenticated Command Injection Exploit
2024-07-29 00:00:00
packetstorm
packetstorm
mySCADA MyPRO Authenticated Command Injection
2024-07-29 00:00:00
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up 08/02/2024
2024-08-02 18:36:25
ics
ics
mySCADA myPRO
2023-04-06 12:00:00
thn
thn
CISA Warns of Critical ICS Flaws in Hitachi, mySCADA, ICL, and Nexx Products
2023-04-07 05:59:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.5
Confidence
High
EPSS
0.229
Percentile
96.6%
Related for CVE-2023-28384