Path Traversal Vulnerability in LCDS LAquis SCADA Software

Path Traversal Vulnerability in LCDS LAquis SCADA Software

CVE-2017-6020 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

Leao Consultoria e Desenvolvimento de Sistemas (LCDS) LTDA ME LAquis SCADA software versions prior to version 4.1.0.3237 do not neutralize external input to ensure that users are not calling for absolute path sequences outside of their privilege level.

Learn more about our External Network Penetration Testing.