CVE-2025-24865

Summary

The administrative web interface of mySCADA myPRO Manager

can be accessed without authentication which could allow an unauthorized attacker to retrieve sensitive information and upload files without the associated password.

Affected Software

VendorProductVersion RangeStatus
mySCADAmyPRO Manager0 < 1.4affected

Weaknesses

  • CWE-306: CWE-306 Missing Authentication for Critical Function

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References