Browse all 8 CVE security advisories affecting Measuresoft. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Measuresoft develops enterprise resource planning (ERP) software for supply chain management. Historically, the product has been vulnerable to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. The company has addressed eight CVEs to date, with several critical RCE issues allowing unauthorized system compromise. While no major public security incidents have been documented, the consistent pattern of vulnerabilities in input handling and authentication mechanisms suggests ongoing challenges in secure coding practices. Organizations implementing Measuresoft should prioritize timely patching and harden configurations against common attack vectors targeting business-critical applications.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-3263 | Measuresoft ScadaPro Server Improper Access Control — ScadaPro ServerCWE-284 | 7.8 | High | 2022-09-23 |
| CVE-2022-2892 | Measuresoft ScadaPro Server Out-of-bounds Write — ScadaPro ServerCWE-787 | 7.8 | High | 2022-08-31 |
| CVE-2022-2894 | Measuresoft ScadaPro Server Untrusted Pointer Dereference — ScadaPro ServerCWE-822 | 7.8 | High | 2022-08-31 |
| CVE-2022-2895 | Measuresoft ScadaPro Server Stack-based Buffer Overflow — ScadaPro ServerCWE-121 | 7.8 | High | 2022-08-31 |
| CVE-2022-2896 | Measuresoft ScadaPro Server Use After Free — ScadaPro ServerCWE-121 | 7.8 | High | 2022-08-31 |
This page lists every published CVE security advisory associated with Measuresoft. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.