Vulnerability in Myscada Technologies Mypro
CVE-2023-28384
mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands.
EPSS: 0.631 (98.4th percentile) — read the EPSS interpretation.
Affected products
- Myscada Technologies Mypro — versions 0
Public proof-of-concept exploits
References
Frequently asked questions
- What is CVE-2023-28384?
- CVE-2023-28384 is a vulnerability in Myscada Technologies Mypro, classified under CWE-78 OS COMMAND INJECTION. Published 2023-04-27.
- Is CVE-2023-28384 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.