Описание
LCDS Laquis SCADA prior to version 4.1.0.4150 allows taking in user input without proper authorization or sanitation, which may allow an attacker to execute remote code on the server.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 4.1.0.4150 (исключая)
cpe:2.3:a:lcds:laquis_scada:*:*:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.0062
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-74
CWE-862
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
LCDS Laquis SCADA prior to version 4.1.0.4150 allows taking in user input without proper authorization or sanitation, which may allow an attacker to execute remote code on the server.
EPSS
Процентиль: 69%
0.0062
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-74
CWE-862