LCDS Laquis SCADA prior to version 4.1.0.4150 allows a user-supplied path in file operations prior to proper validation. An attacker can leverage this vulnerability to disclose sensitive information under the context of the web server process.
CPE | Name | Operator | Version |
---|---|---|---|
laquis_scada | lt | 4.1.0.4150 |