Known Vulnerabilities for Scadabr by Openplcproject
Listed below are 2 of the newest known vulnerabilities associated with "Scadabr" by "Openplcproject".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-8605 json | In ScadaBR version 1.2.0, a Use of Hard-Coded Credentials vulnerability could allow an attacker to access the SCADA system as... | Not Provided | 2026-05-19 | 2026-05-19 |
| CVE-2026-8604 json | In ScadaBR version 1.2.0, a CSRF vulnerability could allow an attacker to trigger any authenticated action through a victim's... | Not Provided | 2026-05-19 | 2026-05-19 |
| CVE-2026-8603 json | In ScadaBR version 1.2.0, an OS Command Injection vulnerability could allow an attacker to execute commands as root on the SC... | Not Provided | 2026-05-19 | 2026-05-19 |
| CVE-2026-8602 json | In ScadaBR version 1.2.0, a Missing Authentication for Critical Function vulnerability could allow an unauthenticated attacke... | Not Provided | 2026-05-19 | 2026-05-19 |
| CVE-2025-70973 json | ScadaBR 1.12.4 is vulnerable to Session Fixation. The application assigns a JSESSIONID session cookie to unauthenticated user... | Not Provided | 2026-03-09 | 2026-03-10 |
| CVE-2021-26829 json | OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows allows stored XSS via system_settings.shtm. | 5.4 - MEDIUM | 2021-06-11 | 2021-06-21 |
| CVE-2021-26828 json | OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows allows remote authenticated users to upload and execute ... | 8.8 - HIGH | 2021-06-11 | 2021-06-21 |