CVE Catalog

CVE-2026-8602

Critical
Published: Translated: NVD NIST

Summary

In ScadaBR version 1.2.0, a Missing Authentication for Critical Function vulnerability could allow an unauthenticated attacker to send HTTP GET requests to the SCADA system and inject arbitrary sensor readings.

Risk Assessment

This vulnerability may lead to manipulation of sensor data, jeopardizing the integrity of the SCADA system and potentially resulting in serious operational consequences.

Recommendation

It is recommended to update to the latest version of ScadaBR and implement authentication mechanisms for critical system functions.

Original NVD description (English source)

In ScadaBR version 1.2.0, a Missing Authentication for Critical Function vulnerability could allow an unauthenticated attacker to send a HTTP GET requests to the SCADA system and inject arbitrary sensor readings.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS