PT-2019-12120 · Laquis · Laquis Scada

Published

2019-08-05

Updated

2020-10-02

CVE-2019-10980

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions LAquis SCADA version 4.3.1.71

Description A type confusion issue may be exploited when processing a specially crafted project file, potentially allowing an attacker to execute remote code. The attacker must have local access to the system.

Recommendations For LAquis SCADA version 4.3.1.71, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Type Confusion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-843

Related Identifiers

CVE-2019-10980

ZDI-19-689

Affected Products

Laquis Scada

PT-2019-12120 · Laquis · Laquis Scada

CVE-2019-10980

Weakness Enumeration

Related Identifiers

Affected Products

References · 4