Back to search
CVE-2017-6020
Published: Apr 17, 2018
Modified: Sep 17, 2024
PUBLISHED
Description
Leao Consultoria e Desenvolvimento de Sistemas (LCDS) LTDA ME LAquis SCADA software versions prior to version 4.1.0.3237 do not neutralize external input to ensure that users are not calling for absolute path sequences outside of their privilege level.
| Vendor | Product | Versions |
|---|---|---|
LCDS - Leão Consultoria e Desenvolvimento de Sistemas LTDA ME | LAquis SCADA software | affected versions prior to version 4.1.0.3237 |
Weaknesses (CWE)
References
42885
exploit
x_refsource_EXPLOIT-DB
97055
vdb-entry
x_refsource_BID
https://ics-cert.us-cert.gov/advisories/ICSA-17-082-01
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now