CVE-2018-11311
28Vexday Risk Score
No sign of exploitation. It has a public proof of concept.
ssvc Attendepss 16%
from disclosure to weapon0 days
Published on NVDMay 20
1st PoCMay 19
exploitation probability
16%top 3% of all CVEs
observed exploitation
nono source reports it
3 public exploit(s)
A hardcoded FTP username of myscada and password of Vikuk63 in 'myscadagate.exe' in mySCADA myPRO 7 allows remote attackers to access the FTP server on port 2121, and upload files or list directories, by entering these credentials.
Affected products
n/a · n/apublic PoCs found — 3
githubgithub.com/EmreOvunc/mySCADA-myPRO-7-Hardcoded-FTP-Username-and-Password★ 12cve_referencewww.exploit-db.com/exploits/44656/unverifiedexploitdbwww.exploit-db.com/exploits/48620unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.