Unauthenticated Remote Code Execution in LCDS Laquis SCADA (prior to version 4.1.0.4150)

Unauthenticated Remote Code Execution in LCDS Laquis SCADA (prior to version 4.1.0.4150)

CVE-2018-18996 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

LCDS Laquis SCADA prior to version 4.1.0.4150 allows taking in user input without proper authorization or sanitation, which may allow an attacker to execute remote code on the server.

Learn more about our Cis Benchmark Audit For Server Software.