CVE-2025-23411 mySCADA CVE debrief

Who should care

Organizations running mySCADA myPRO Manager, especially OT/ICS operators, system administrators, and security teams responsible for managing the product and its access controls.

Technical summary

The affected product is vulnerable to CSRF. The attack requires user interaction: an attacker must get a victim to visit an attacker-controlled website. CISA’s supplied CVSS vector is CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L, reflecting a network-reachable issue that can affect confidentiality, integrity, and availability at low impact levels.

Defensive priority

Medium priority. Apply the vendor fix promptly if the product is in use, because the issue is publicly disclosed and a patched version is available.

Recommended defensive actions

• Update mySCADA myPRO Manager to version 1.4 or later.
• Confirm which systems run mySCADA myPRO Manager and check whether any instances are still below 1.4.
• Follow CISA ICS recommended practices and best practices for defense in depth around management interfaces and operator workstations.
• Review user awareness and browsing behavior for accounts that can access the product, since the attack path depends on a victim visiting a malicious website.
• Use the CISA advisory and official CVE/NVD records to validate remediation status in your environment.

Evidence notes

Source corpus shows CISA CSAF advisory ICSA-25-044-16 for CVE-2025-23411, with affected product listed as 'mySCADA myPRO Manager: <1.4' and remediation to update to v1.4. The description in the advisory states the flaw is CSRF that could expose sensitive information and requires the victim to visit an attacker-controlled website. The supplied CVSS vector is CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L.

Official resources