Laquis SCADA
by Lcds Leão Consultoria E Desenvolvimento De Sistemas Ltda Me
CVEs (7)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-32989 | 0.00 | — | 0.00 | May 25, 2022 | When a non-existent resource is requested, the LCDS LAquis SCADA application (version 4.3.1.1011 and prior) returns error messages which may allow reflected cross-site scripting. | ||
| CVE-2019-6536 | 0.00 | — | 0.00 | Mar 27, 2019 | Opening a specially crafted LCDS LAquis SCADA before 4.3.1.71 ELS file may result in a write past the end of an allocated buffer, which may allow an attacker to execute remote code in the context of the current process. | ||
| CVE-2018-17899 | 0.00 | — | 0.05 | Oct 17, 2018 | LAquis SCADA Versions 4.1.0.3870 and prior has a path traversal vulnerability, which may allow remote code execution. | ||
| CVE-2018-17911 | 0.00 | — | 0.01 | Oct 17, 2018 | LAquis SCADA Versions 4.1.0.3870 and prior has several stack-based buffer overflow vulnerabilities, which may allow remote code execution. | ||
| CVE-2018-17893 | 0.00 | — | 0.05 | Oct 17, 2018 | LAquis SCADA Versions 4.1.0.3870 and prior has an untrusted pointer dereference vulnerability, which may allow remote code execution. | ||
| CVE-2018-17901 | 0.00 | — | 0.00 | Oct 17, 2018 | LAquis SCADA Versions 4.1.0.3870 and prior, when processing project files the application fails to sanitize user input prior to performing write operations on a stack object, which may allow an attacker to execute code under the current process. | ||
| CVE-2018-17895 | 0.00 | — | 0.04 | Oct 17, 2018 | LAquis SCADA Versions 4.1.0.3870 and prior has several out-of-bounds read vulnerabilities, which may allow remote code execution. |
- CVE-2021-32989May 25, 2022risk 0.00cvss —epss 0.00
When a non-existent resource is requested, the LCDS LAquis SCADA application (version 4.3.1.1011 and prior) returns error messages which may allow reflected cross-site scripting.
- CVE-2019-6536Mar 27, 2019risk 0.00cvss —epss 0.00
Opening a specially crafted LCDS LAquis SCADA before 4.3.1.71 ELS file may result in a write past the end of an allocated buffer, which may allow an attacker to execute remote code in the context of the current process.
- CVE-2018-17899Oct 17, 2018risk 0.00cvss —epss 0.05
LAquis SCADA Versions 4.1.0.3870 and prior has a path traversal vulnerability, which may allow remote code execution.
- CVE-2018-17911Oct 17, 2018risk 0.00cvss —epss 0.01
LAquis SCADA Versions 4.1.0.3870 and prior has several stack-based buffer overflow vulnerabilities, which may allow remote code execution.
- CVE-2018-17893Oct 17, 2018risk 0.00cvss —epss 0.05
LAquis SCADA Versions 4.1.0.3870 and prior has an untrusted pointer dereference vulnerability, which may allow remote code execution.
- CVE-2018-17901Oct 17, 2018risk 0.00cvss —epss 0.00
LAquis SCADA Versions 4.1.0.3870 and prior, when processing project files the application fails to sanitize user input prior to performing write operations on a stack object, which may allow an attacker to execute code under the current process.
- CVE-2018-17895Oct 17, 2018risk 0.00cvss —epss 0.04
LAquis SCADA Versions 4.1.0.3870 and prior has several out-of-bounds read vulnerabilities, which may allow remote code execution.