23Oca
CVE-2025-20061 | mySCADA myPRO Manager/myPRO Runtime POST Request os command injection (icsa-25-023-01)
A vulnerability, which was classified as very critical, was found in mySCADA myPRO Manager and myPRO Runtime. This affects an unknown part of the component POST Request Handler. The manipulation leads to os command injection. This vulnerability is uniquely identified as CVE-2025-20061. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.