CVE-2022-2234
published 2022-08-24CVE-2022-2234: An authenticated mySCADA myPRO 8.26.0 user may be able to modify parameters to run commands directly in the operating system.
PriorityP265high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
41.47%
98.5th percentile
An authenticated mySCADA myPRO 8.26.0 user may be able to modify parameters to run commands directly in the operating system.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| myscada | mypro | <= 8.26.0 | — |
| myscada_technologies | myscada_mypro | unspecified – 8.26.0 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerability class is Command Injection (CWE-77) in mySCADA myPRO; detection should focus on authenticated HTTP requests with modified parameters containing OS command injection payloads (e.g., shell metacharacters: ;, |, &&, $(), backticks) targeting the myPRO web interface. ↗
- →Target environment is mySCADA myPRO HMI/SCADA versions 8.26.0 and prior; alert on network traffic to/from myPRO systems from unexpected sources, especially over internet-facing interfaces. ↗
- →Exploitation is remotely achievable with low attack complexity and only requires low-privilege (authenticated) access; monitor for anomalous authenticated sessions followed by unusual process spawning on myPRO hosts. ↗
- ·No known public exploits specifically target this vulnerability at time of advisory publication; threat may evolve. ↗
- ·Exploitation requires an authenticated session (low-privilege user); unauthenticated attack surface is not confirmed. ↗
- ·The specific vulnerable parameter name(s) and endpoint path(s) are not disclosed in available sources; precise HTTP-level IOCs cannot be confirmed without further research. ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
kernel: ext4: init quota for 'old.inode' in 'ext4_rename'
vendor_redhat·2025-09-16·CVSS 5.5
CVE-2022-50346 [MEDIUM] kernel: ext4: init quota for 'old.inode' in 'ext4_rename'
kernel: ext4: init quota for 'old.inode' in 'ext4_rename'
In the Linux kernel, the following vulnerability has been resolved:
ext4: init quota for 'old.inode' in 'ext4_rename'
Syzbot found the following issue:
ext4_parse_param: s_want_extra_isize=128
ext4_inode_info_init: s_want_extra_isize=32
ext4_rename: old.inode=ffff88823869a2c8 old.dir=ffff888238699828 new.inode=ffff88823869d7e8 new.dir=ffff888238699828
__ext4_mark_inode_dirty: inode=ffff888238699828 ea_isize=32 want_ea_size=128
__ext4_mark_inode_dirty: inode=ffff88823869a2c8 ea_isize=32 want_ea_size=128
ext4_xattr_block_set: inode=ffff88823869a2c8
------------[ cut here ]------------
WARNING: CPU: 13 PID: 2234 at fs/ext4/xattr.c:2070 ext4_xattr_block_set.cold+0x22/0x980
Modules linked in:
RIP: 0010:ext4_xattr_block_set.cold+0x22/0x9
CISA ICS
mySCADA myPRO
cisa_ics·2022-09-01·CVSS 9.9
[CRITICAL] mySCADA myPRO
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
mySCADA myPRO
Last RevisedSeptember 01, 2022
Alert CodeICSA-22-235-03
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.9
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: mySCADA Technologies
- Equipment: mySCADA myPRO
- Vulnerability: Command Injection
## 2. RISK EVALUATION
Successful exploitation of this vulnerability could allow an attacker to run commands directly in the operating system.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
mySCADA reports this vulnerability affects the following myPRO HMI/SCADA systems:
- myPRO: Versions 8.26.0 and prior
## 3.2 VU
GHSA
GHSA-px5r-qw43-pqcc: An authenticated mySCADA myPRO 8
ghsa_unreviewed·2022-08-25
CVE-2022-2234 [HIGH] CWE-77 GHSA-px5r-qw43-pqcc: An authenticated mySCADA myPRO 8
An authenticated mySCADA myPRO 8.26.0 user may be able to modify parameters to run commands directly in the operating system.
No detection rules found.
No public exploits indexed.
2022-08-24
Published