CVE-2018-18986

Summary

LCDS Laquis SCADA prior to version 4.1.0.4150 allows the opening of a specially crafted report format file that may cause an out of bounds read, which may cause a system crash, allow data exfiltration, or remote code execution.

Affected Software

VendorProductVersion RangeStatus
LCDSLCDS Laquis SCADAAll versions prior to version 4.1.0.4150affected

Weaknesses

  • CWE-787: OUT-OF-BOUNDS WRITE CWE-787

ADP Enrichment

CVE Program Container

Additional References

References