CVE-2021-27505 - mySCADA myPRO versions prior to 8.20.0 does not restrict unauthorized read access to sensitive direc

CVE-2021-27505

Summary

mySCADA myPRO versions prior to 8.20.0 does not restrict unauthorized read access to sensitive directory listing information.

References

Vulnerable Configurations

cpe:2.3:a:myscada:mypro:7:*:*:*:*:*:*:*
cpe:2.3:a:myscada:mypro:7:*:*:*:*:*:*:*
cpe:2.3:a:myscada:mypro:7.0.26:*:*:*:*:*:*:*
cpe:2.3:a:myscada:mypro:7.0.26:*:*:*:*:*:*:*
cpe:2.3:a:myscada:mypro:8.20.0:*:*:*:*:*:*:*
cpe:2.3:a:myscada:mypro:8.20.0:*:*:*:*:*:*:*

CVSS

CWE

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:N/A:N

Last major update

24-05-2022 - 20:41

Published

13-05-2022 - 16:15

Last modified

24-05-2022 - 20:41