Intrusion Prevention

MySCADA.myPRO7.FTP.Hardcoded.Account.Access

Description

This indicates detection of a login attempt to mySCADA myPRO 7 with a default account.
The vulnerability is due to a design flaw which allowed for a built in default account in the application. A remote attacker may be able to exploit this to log in to the application without valid authorization.

Affected Products

mySCADA myPRO 7

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Currently we are unaware of any vendor supplied patch or updates available for this issue.

CVE References

CVE-2018-11311