CheckUser in ScadaServerEngine/MainLogic.cs in Rapid SCADA through 5.8.4 allows an empty password. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Brute Force
Information Disclosure
Rapid Scada
NVD
GitHub
CVSS 3.1
7.5
EPSS
0.4%