3 matches found
LAquis SCADA Web Server Command Injection (CVE-2018-18992)
A command injection exists in LAquis SCADA web server. The vulnerability is due to insufficient input sanitization, which permits command injection. A remote attacker could exploit this vulnerability by sending a crafted request to an affected server...
CVE-2018-18992
LCDS Laquis SCADA prior to version 4.1.0.4150 allows taking in user input without proper sanitation, which may allow an attacker to execute remote code on the server...
CVE-2018-18992
The CVE-2018-18992 issue affects LAquis SCADA/Web Server components (LCDS Laquis SCADA) prior to version 4.1.0.4150. The root cause is insufficient input sanitization that allows user input to be processed in a way that can lead to remote code execution on the server. Multiple advisories describe...