PT-2025-34137 · Scada-Lts · Scada-Lts
Marceloqz
·
Published
2025-08-20
·
Updated
2025-08-21
·
CVE-2025-9235
CVSS v3.1
5.4
Medium
| Vector | AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions:
Scada-LTS versions prior to 2.7.8.2
Description:
A flaw has been found in Scada-LTS. The impacted element is an unknown function of the file
compound events.shtm. Manipulation of the argument Name causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been published and may be used.Recommendations:
Update Scada-LTS to version 2.7.8.2 or later.
Exploit
Fix
Code Injection
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Scada-Lts