CVE: Common Vulnerabilities and Exposures

Required CVE Record Information

Description

LCDS Laquis SCADA prior to version 4.1.0.4150 allows a user-supplied path in file operations prior to proper validation. An attacker can leverage this vulnerability to disclose sensitive information under the context of the web server process.

CWE 1 Total

Learn more

CWE-23: RELATIVE PATH TRAVERSAL CWE-23

Product Status

Learn more

Versions 1 Total

Default Status: unknown

affected

References 2 Total

https://ics-cert.us-cert.gov/advisories/ICSA-19-015-01
external site
securityfocus.com: 106634
external site
vdb-entry

Updated: 2024-08-05

This container includes required additional information provided by the CVE Program for this vulnerability.

References 2 Total

https://ics-cert.us-cert.gov/advisories/ICSA-19-015-01
external site
x_transferred
securityfocus.com: 106634
external site
vdb-entryx_transferred

Common vulnerabilities and Exposures (CVE)

Required CVE Record Information

CNA: ICS-CERT

Description

CWE 1 Total

Product Status

References 2 Total

CVE Program

References 2 Total