CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-6020

Leao Consultoria e Desenvolvimento de Sistemas (LCDS) LTDA ME LAquis SCADA software versions prior to version 4.1.0.3237 do not neutralize external input to ensure that users are not calling for absolute path sequences outside of their privilege level.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.067

EPSS Ranking 90.8%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 4.0

References

http://www.securityfocus.com/bid/97055
https://ics-cert.us-cert.gov/advisories/ICSA-17-082-01
https://www.exploit-db.com/exploits/42885/
http://www.securityfocus.com/bid/97055
https://ics-cert.us-cert.gov/advisories/ICSA-17-082-01
https://www.exploit-db.com/exploits/42885/

Products affected by CVE-2017-6020

Lcds » Laquis Scada » Version: 4.1

cpe:2.3:a:lcds:laquis_scada:4.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-6020

Products

Pricing

Contact Us