CVE-2017-6020

CVE-2017-6020

Vendor Lcds - Leã£O Consultoria E Desenvolvimento De Sistemas Ltda Me
Product LAquis SCADA software
Weakness CWE-22 · Path traversal
Published April 17, 2018
Last update September 17, 2024

CVSS base score

What the vulnerability does

01Description

Leao Consultoria e Desenvolvimento de Sistemas (LCDS) LTDA ME LAquis SCADA software versions prior to version 4.1.0.3237 do not neutralize external input to ensure that users are not calling for absolute path sequences outside of their privilege level.

Key dates

02Disclosure timeline

April 17, 2018 CVE published
September 17, 2024 Record updated

Related vulnerabilities

04Related CVE