ICSA-25-044-16 · Published 2025-02-13 · View on CISA ICS-CERT ↗

mySCADA myPRO Manager

CVSS 10.0 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary OS commands, upload files, and obtain sensitive information without providing associated credentials.

CVEs (4)

CVE-2025-25067 CVE-2025-24865 CVE-2025-22896 CVE-2025-23411

Remediations

mySCADA recommends users update to myPRO Manager v1.4

Affected Vendors

mySCADA

Affected Products (1)

mySCADA · myPRO Manager <1.4

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more