A vulnerability was found in Rapid SCADA up to 5.8.4. It has been declared as critical. This vulnerability affects the function
CheckUser
of the file ScadaServer/ScadaServer/ScadaServerEngine/MainLogic.cs. The manipulation of the argument password leads to weak password requirements.
This vulnerability was named CVE-2024-47221. The attack needs to be done within the local network. There is no exploit available.
It is recommended to apply a patch to fix this issue.