CVE-2018-17901

LAquis SCADA Versions 4.1.0.3870 and prior, when processing project files the application fails to sanitize user input prior to performing write operations on a stack object, which may allow an attacker to execute code under the current process.

Published : 2018-10-17 02:29 Updated : 2019-10-09 23:37

6.8
CVSS Score More info
Score 6.8 / 10
6.8
Vendor Product Version URI
Lcds Laquis Scada 4.1.0.3870 cpe:/a:lcds:laquis_scada:4.1.0.3870
  1. Lcds (1) Search CVE
    1. Laquis Scada (1) Search CVE
      1. 4.1.0.3870

CWE

ID Name Description Links
CWE-787 Out-of-bounds Write The software writes data past the end, or before the beginning, of the intended buffer. CVE

History of changes

Date Event
2018-11-30 15:07
2018-10-17 02:29

New CVE