ByteOS Network

InSAT

Source -

CNA

BOS Name -

N/A

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2026-22553

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

View Details

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

CVSS Score-9.3||CRITICAL

EPSS-Not Assigned

Published-24 Feb, 2026 | 20:56

Updated-24 Feb, 2026 | 21:52

InSAT MasterSCADA BUK-TS OS Command Injection

All versions of InSAT MasterSCADA BUK-TS are susceptible to OS command injection through a field in its MMadmServ web interface. Malicious users that use the vulnerable endpoint are potentially able to cause remote code execution.

Vendor-InSAT

Product-MasterSCADA BUK-TS

CWE ID-CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

CVE-2026-21410

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

View Details

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

CVSS Score-9.3||CRITICAL

EPSS-Not Assigned

Published-24 Feb, 2026 | 20:53

Updated-24 Feb, 2026 | 21:52

InSAT MasterSCADA BUK-TS SQL Injection

InSAT MasterSCADA BUK-TS is susceptible to SQL Injection through its main web interface. Malicious users that use the vulnerable endpoint are potentially able to cause remote code execution.

Vendor-InSAT

Product-MasterSCADA BUK-TS

CWE ID-CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')