CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-25188

An attacker who convinces a valid user to open a specially crafted project file to exploit could execute code under the privileges of the application due to an out-of-bounds read vulnerability on the LAquis SCADA (Versions prior to 4.3.1.870).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 41.6%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

https://us-cert.cisa.gov/ics/advisories/icsa-20-287-02
https://www.zerodayinitiative.com/advisories/ZDI-20-1244/
https://us-cert.cisa.gov/ics/advisories/icsa-20-287-02
https://www.zerodayinitiative.com/advisories/ZDI-20-1244/

Products affected by CVE-2020-25188

Laquisscada » Scada » Version: 4.1.0.4150

cpe:2.3:a:laquisscada:scada:4.1.0.4150
Laquisscada » Scada » Version: 4.3.1.71

cpe:2.3:a:laquisscada:scada:4.3.1.71

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-25188

Products

Pricing

Contact Us