Lcds: >> Laquis Scada >> 4.1.0.4150 Security Vulnerabilities
When a non-existent resource is requested, the LCDS LAquis SCADA application (version 4.3.1.1011 and prior) returns error messages which may allow reflected cross-site scripting.
CVSS Score
9.3
EPSS Score
0.002
Published
2022-05-25
LCDS LAquis SCADA Versions 4.3.1 and prior. The affected product is vulnerable to sensitive information exposure by unauthorized users.
CVSS Score
5.5
EPSS Score
0.002
Published
2020-05-04
LCDS LAquis SCADA Versions 4.3.1 and prior. The affected product is vulnerable to arbitrary file creation by unauthorized users
CVSS Score
7.8
EPSS Score
0.002
Published
2020-05-04
Opening a specially crafted LCDS LAquis SCADA before 4.3.1.71 ELS file may result in a write past the end of an allocated buffer, which may allow an attacker to execute remote code in the context of the current process.
CVSS Score
7.8
EPSS Score
0.002
Published
2019-03-27