cbcvebase.
CVE-2022-2234
published 2022-08-24

CVE-2022-2234: An authenticated mySCADA myPRO 8.26.0 user may be able to modify parameters to run commands directly in the operating system.

PriorityP265high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
41.47%
98.5th percentile
An authenticated mySCADA myPRO 8.26.0 user may be able to modify parameters to run commands directly in the operating system.

Affected

2 ranges
VendorProductVersion rangeFixed in
myscadamypro<= 8.26.0
myscada_technologiesmyscada_myprounspecified – 8.26.0

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability class is Command Injection (CWE-77) in mySCADA myPRO; detection should focus on authenticated HTTP requests with modified parameters containing OS command injection payloads (e.g., shell metacharacters: ;, |, &&, $(), backticks) targeting the myPRO web interface.
  • Target environment is mySCADA myPRO HMI/SCADA versions 8.26.0 and prior; alert on network traffic to/from myPRO systems from unexpected sources, especially over internet-facing interfaces.
  • Exploitation is remotely achievable with low attack complexity and only requires low-privilege (authenticated) access; monitor for anomalous authenticated sessions followed by unusual process spawning on myPRO hosts.
  • ·No known public exploits specifically target this vulnerability at time of advisory publication; threat may evolve.
  • ·Exploitation requires an authenticated session (low-privilege user); unauthenticated attack surface is not confirmed.
  • ·The specific vulnerable parameter name(s) and endpoint path(s) are not disclosed in available sources; precise HTTP-level IOCs cannot be confirmed without further research.

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.