LCDS LAquis SCADA up to and including 4.3.1.1085 is vulnerable to a control bypass and path traversal. If an attacker can get a victim to load a malicious els project file and use the play feature, then the attacker can bypass a consent popup and write arbitrary files to OS locations where the user has permission, leading to code execution.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
laquisscada scada |