CVE-2024-4872

Name of the Vulnerable Software and Affected Versions MicroSCADA Pro/X SYS600 (affected versions not specified)

Description A vulnerability exists in the query validation of the product. If exploited, this could allow an authenticated attacker to inject code towards persistent data. The product does not validate any query towards persistent data, resulting in a risk of injection attacks. Note that to successfully exploit this vulnerability, an attacker must have a valid credential.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.