3 matches found
CVE-2019-10980
A type confusion vulnerability may be exploited when LAquis SCADA 4.3.1.71 processes a specially crafted project file. This may allow an attacker to execute remote code. The attacker must have local access to the system. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is...
CVE-2019-10980
LAquis SCADA 4.3.1.71 is affected by a type confusion in LQS file parsing that may allow remote code execution when processing a specially crafted project file. The vulnerability is scoped to LAquis SCADA and is associated with CVE-2019-10980 (CVSSv3 base score 7.8). Some sources indicate the att...
LCDS LAquis SCADA LQS File Parsing
1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low skill level to exploit Vendor: LCDS—Leão Consultoria e Desenvolvimento de Sistemas LTDA ME Equipment: LAquis SCADA Vulnerabilities: Out-of-bounds Read, Type Confusion 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an...