CVE-2018-11311
CRITICALMyscada Mypro - Hard-coded Credentials
Title source: ruleDescription
A hardcoded FTP username of myscada and password of Vikuk63 in 'myscadagate.exe' in mySCADA myPRO 7 allows remote attackers to access the FTP server on port 2121, and upload files or list directories, by entering these credentials.
Exploits (2)
nomisec
WRITEUP
12 stars
by EmreOvunc · poc
https://github.com/EmreOvunc/mySCADA-myPRO-7-Hardcoded-FTP-Username-and-Password
References (3)
Scores
CVSS v3
9.1
EPSS
0.3629
EPSS Percentile
97.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Details
CWE
CWE-798
Status
published
Products (1)
myscada/mypro
7.0
Published
May 20, 2018
Tracked Since
Feb 18, 2026