CVE-2020-25188

An attacker who convinces a valid user to open a specially crafted project file to exploit could execute code under the privileges of the application due to an out-of-bounds read vulnerability on the LAquis SCADA (Versions prior to 4.3.1.870).
References
Link Resource
https://us-cert.cisa.gov/ics/advisories/icsa-20-287-02 Third Party Advisory US Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-20-1244/ Third Party Advisory VDB Entry
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:laquisscada:scada:*:*:*:*:*:*:*:*

Information

Published : 2020-10-14 06:15

Updated : 2020-10-26 11:27


NVD link : CVE-2020-25188

Mitre link : CVE-2020-25188


JSON object : View

CWE
CWE-125

Out-of-bounds Read

Advertisement

dedicated server usa

Products Affected

laquisscada

  • scada