CVE-2018-12635

CirCarLife Scada v4.2.4 allows unauthorized upgrades via requests to the html/upgrade.html and services/system/firmware.upgrade URIs...

CVE-2018-12635

CirCarLife Scada v4.2.4 is affected by an unauthorized upgrade vulnerability, exploitable via requests to html/upgrade.html and services/system/firmware.upgrade URIs. The provided documents describe the issue as an ability to perform upgrades without authorization, but do not specify the underlyi...