CVE-2024-47407 Information

Description

A parameter within a command does not properly validate input within myPRO Manager which could be exploited by an unauthenticated remote attacker to inject arbitrary operating system commands.

Reference

https://www.cisa.gov/news-events/ics-advisories/icsa-24-326-07