CVE-2021-22657

mySCADA myPRO: Versions 8.20.0 and prior has a feature where the API password can be specified, which may allow an attacker to inject arbitrary operating system commands through a specific parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt