exploitDog

CVE-2021-43987

Опубликовано: 23 дек. 2021

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

An additional, nondocumented administrative account exists in mySCADA myPRO Versions 8.20.0 and prior that is not exposed through the web interface, which cannot be deleted or changed through the regular web interface.

Ссылки

https://www.cisa.gov/uscert/ics/advisories/icsa-21-355-01
Third Party Advisory
US Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-21-355-01
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:myscada:mypro:*:*:*:*:*:*:*:*

Версия до 8.20.0 (включая)

EPSS

Процентиль: 45%

0.00228

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-912

Связанные уязвимости

GHSA-5jvw-w4j5-8wrq

github

около 4 лет назад

An additional, nondocumented administrative account exists in mySCADA myPRO Versions 8.20.0 and prior that is not exposed through the web interface, which cannot be deleted or changed through the regular web interface.

EPSS

Процентиль: 45%

0.00228

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-912