← Back to home
ICSA-22-265-01  ·  Published 2022-09-22  ·  View on CISA ICS-CERT ↗

Measuresoft ScadaPro Server

CVSS 7.8 HIGH

Risk Summary

Successful exploitation of this vulnerability could allow a local user with limited privileges to modify the service binary path and start malicious commands with SYSTEM privileges.

CVEs (1)

Remediations

  • Measuresoft recommends the following steps to remove full access to the ORCHESTRATOR service:

Affected Vendors

Measuresoft

Affected Products (1)

Measuresoft · ScadaPro Server 6.7

Affected Sectors

Energy, Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more