CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-43555

mySCADA myDESIGNER Versions 8.20.0 and prior fails to properly validate contents of an imported project file, which may make the product vulnerable to a path traversal payload. This vulnerability may allow an attacker to plant files on the file system in arbitrary locations or overwrite existing files, resulting in remote code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.019

EPSS Ranking 82.2%

CVSS Severity

CVSS v3 Score 7.3

CVSS v2 Score 6.8

References

Products affected by CVE-2021-43555

Myscada » Mydesigner » Version: 8.11.0

cpe:2.3:a:myscada:mydesigner:8.11.0
Myscada » Mydesigner » Version: 8.12.0

cpe:2.3:a:myscada:mydesigner:8.12.0
Myscada » Mydesigner » Version: 8.13.0

cpe:2.3:a:myscada:mydesigner:8.13.0
Myscada » Mydesigner » Version: 8.14.0

cpe:2.3:a:myscada:mydesigner:8.14.0
Myscada » Mydesigner » Version: 8.15.0

cpe:2.3:a:myscada:mydesigner:8.15.0
Myscada » Mydesigner » Version: 8.16.0

cpe:2.3:a:myscada:mydesigner:8.16.0
Myscada » Mydesigner » Version: 8.17.0

cpe:2.3:a:myscada:mydesigner:8.17.0
Myscada » Mydesigner » Version: 8.18.0

cpe:2.3:a:myscada:mydesigner:8.18.0
Myscada » Mydesigner » Version: 8.19.0

cpe:2.3:a:myscada:mydesigner:8.19.0
Myscada » Mydesigner » Version: 8.20.0

cpe:2.3:a:myscada:mydesigner:8.20.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-43555

Products

Pricing

Contact Us