Vulnerability Details CVE-2018-17893
LAquis SCADA Versions 4.1.0.3870 and prior has an untrusted pointer dereference vulnerability, which may allow remote code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.069
EPSS Ranking 90.9%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- http://laquisscada.com/instale1.php
- http://www.securityfocus.com/bid/105719
- https://ics-cert.us-cert.gov/advisories/ICSA-18-289-01
- https://exchange.xforce.ibmcloud.com/vulnerabilities/151417
- http://laquisscada.com/instale1.php
- http://www.securityfocus.com/bid/105719
- https://ics-cert.us-cert.gov/advisories/ICSA-18-289-01
Products affected by CVE-2018-17893
-
cpe:2.3:a:lcds:laquis_scada:4.1
-
cpe:2.3:a:lcds:laquis_scada:4.1.0.3391
-
cpe:2.3:a:lcds:laquis_scada:4.1.0.3870