Vulnerability Details CVE-2018-18988
LCDS Laquis SCADA prior to version 4.1.0.4150 allows execution of script code by opening a specially crafted report format file. This may allow remote code execution, data exfiltration, or cause a system crash.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 77.1%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 8.3
References
Products affected by CVE-2018-18988
-
cpe:2.3:a:lcds:laquis_scada:4.1
-
cpe:2.3:a:lcds:laquis_scada:4.1.0.3391
-
cpe:2.3:a:lcds:laquis_scada:4.1.0.3870