CVE-2018-11517

MEDIUM

mySCADA myPRO 7 - Unauthenticated Exposure of Sensitive Information via ProjectID Enumeration

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-11517. PoCs published by EmreOvunc.

AI-analyzed exploit summary This is a Metasploit auxiliary module that enumerates project IDs in mySCADA myPRO by brute-forcing a range of IDs via TCP. It leverages an information disclosure vulnerability (CVE-2018-11517) to identify valid project IDs.

Description

mySCADA myPRO 7 allows remote attackers to discover all ProjectIDs in a project by sending all of the prj parameter values from 870000 to 875000 in t=0&rq=0 requests to TCP port 11010.

Exploits (1)

nomisec WORKING POC 4 stars

by EmreOvunc · poc

https://github.com/EmreOvunc/mySCADA-myPRO-7-projectID-Disclosure

View Code ZIP pw:eip

This is a Metasploit auxiliary module that enumerates project IDs in mySCADA myPRO by brute-forcing a range of IDs via TCP. It leverages an information disclosure vulnerability (CVE-2018-11517) to identify valid project IDs.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: mySCADA myPRO v7.0.46

No auth needed

Prerequisites: Network access to the target on port 11010

MITRE ATT&CK

T1592 - Gather Victim Host Information

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Not Applicable x_refsource_misc

https://www.emreovunc.com/blog/en/mypro_enum_projectid.rb

Exploit, Third Party Advisory x_refsource_misc

https://github.com/EmreOvunc/mySCADA-myPRO-7-projectID-Disclosure

Scores

CVSS v3 5.3

EPSS 0.0209

EPSS Percentile 79.2%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Details

CWE

CWE-200

Status published

Products (1)

myscada/mypro 7.0

Published May 28, 2018

Tracked Since Feb 18, 2026