CVE-2018-18996

N/A

Description

LCDS Laquis SCADA prior to version 4.1.0.4150 allows taking in user input without proper authorization or sanitation, which may allow an attacker to execute remote code on the server.

Details CVE

Score CVSS v3.1N/A

Publie2/5/2019

Derniere modification11/21/2024

Sourcenvd

Observations honeypot0

Produits affectes

lcds:laquis_scada

Faiblesses (CWE)

CWE-74CWE-862

References

http://www.securityfocus.com/bid/106634(ics-cert@hq.dhs.gov)

https://ics-cert.us-cert.gov/advisories/ICSA-19-015-01(ics-cert@hq.dhs.gov)

http://www.securityfocus.com/bid/106634(af854a3a-2127-422b-91ae-364da2661108)

https://ics-cert.us-cert.gov/advisories/ICSA-19-015-01(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.