CVE-2025-20014 | mySCADA myPRO Manager/myPRO Runtime POST Request os command injection (icsa-25-023-01)

Posted by Angelo Barbosa | Jan 23, 2025 | CVE

A vulnerability has been found in mySCADA myPRO Manager and myPRO Runtime and classified as very critical. This vulnerability affects unknown code of the component POST Request Handler. The manipulation leads to os command injection.

This vulnerability was named CVE-2025-20014. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-20014 | mySCADA myPRO Manager/myPRO Runtime POST Request os command injection (icsa-25-023-01)

Related Posts

CVE-2023-46050 | MiniZinc libminizinc 2.7.6 Preferences.json null pointer dereference

CVE-2024-5608 | Zoho ManageEngine ADAudit Plus up to 8120 Technician Reports sql injection

CVE-2024-49214 | HAProxy up to 2.9.10/3.0.4/3.1-dev6 QUIC access control

CVE-2024-51677 | WebberZone Knowledge Base Plugin up to 2.2.0 on WordPress cross site scripting