📦 Conprosys Hmi System

by Contec

🔍 What is Conprosys Hmi System?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2025-34081

HIGH CVSS 7.5 Jul 1, 2025

The CONPROSYS HMI System exposes an unauthenticated PHP phpinfo() debug page that reveals sensitive system information. This vulnerability affects all CONPROSYS HMI System (CHS) installations before v...

CVE-2023-28657

HIGH CVSS 8.8 Jun 1, 2023

An improper access control vulnerability in CONPROSYS HMI System (CHS) allows local users to escalate privileges to administrative level. This affects all versions prior to 3.5.3. Users with local acc...

CVE-2025-34080

MEDIUM CVSS 6.1 Jul 1, 2025

This vulnerability allows attackers to execute reflected cross-site scripting (XSS) attacks via the getqsetting.php endpoint in Contec CONPROSYS HMI System. Attackers can inject malicious scripts that...