← Back to home
ICSA-24-263-04  ·  Published 2025-08-12  ·  View on CISA ICS-CERT ↗

MegaSys Computer Technologies Telenium Online Web Application (Update A)

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to inject arbitrary Perl code through a crafted HTTP request, leading to remote code execution on the server.

CVEs (1)

Remediations

  • MegaSys Computer technologies released the following patches:
  • Telenium Online Web Application: v7.4.72
  • Telenium Online Web Application: v8.3.36
  • If users are unable to promptly install the patched versions addressing the vulnerability, MegaSys Computer Technologies recommends mitigating the risk by disabling the web/browser-based interface.
  • For additional information or assistance, contact MegaSys Computer Technologies support directly.

Affected Vendors

MegaSys Computer Technologies

Affected Products (1)

MegaSys Computer Technologies · Telenium Online Web Application <=8.3

Affected Sectors

Information Technology, Communications

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more