PatchSiren

Measuresoft CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

MEDIUM Measuresoft CVE published 2024-04-16

CVE-2024-3746

CVE-2024-3746 is a medium-severity vulnerability in Measuresoft ScadaPro 6.9.0.0, published by CISA on April 16, 2024. The issue stems from insecure default file system permissions: the installation directory C:ScadaPro and all subdirectories are writable by any user, including unprivileged accounts. This local attack vector allows low-privileged users to overwrite critical application files, potentially [truncated]