lcds 漏洞與 CVE 列表(22)

產品(CPE): — CVE 數: 22

lcds 漏洞概覽

彙總 lcds 相關全部產品的 CVE 與安全漏洞情報,包括 CVSS、EPSS、公開時間與漏洞情報資料。

已披露問題常與 緩衝區溢位、路徑處理缺陷與輸入驗證問題 相關,可能在 生產負載與軟體部署 場景中帶來 異常行為與工作階段劫持 等暴露風險。

相關漏洞資料主要來源於公開漏洞披露與安全公告,可用於評估歷史漏洞暴露面與修補優先順序。

漏洞分布趨勢(近 24 個月)

顯示 12022 CVE 數
«« 第一頁 « 上一頁 第 1 / 2 頁 下一頁 »
CVE 摘要 來源 最高 CVSS EPSS % 公開時間 更新時間
CVE-2021-32989 When a non-existent resource is requested, the LCDS LAquis SCADA application (version 4.3.1.1011 and prior) returns error messages which may allow reflected cross-site scripting. [email protected] 9.3 2.25% 2022-05-25 2026-06-16
CVE-2020-10622 LCDS LAquis SCADA Versions 4.3.1 and prior. The affected product is vulnerable to arbitrary file creation by unauthorized users [email protected] 7.8 0.81% 2020-05-04 2026-06-16
CVE-2020-10618 LCDS LAquis SCADA Versions 4.3.1 and prior. The affected product is vulnerable to sensitive information exposure by unauthorized users. [email protected] 5.5 0.83% 2020-05-04 2026-06-16
CVE-2019-6536 Opening a specially crafted LCDS LAquis SCADA before 4.3.1.71 ELS file may result in a write past the end of an allocated buffer, which may allow an attacker to execute remote code in the context of the current process. [email protected] 7.8 1.21% 2019-03-27 2026-06-16
CVE-2018-19029 LCDS Laquis SCADA prior to version 4.1.0.4150 allows an attacker using a specially crafted project file to supply a pointer for a controlled memory address, which may allow remote code execution, data exfiltration, or cause a system crash. [email protected] 7.8 2.67% 2019-02-05 2026-06-16
CVE-2018-19002 LCDS Laquis SCADA prior to version 4.1.0.4150 allows improper control of generation of code when opening a specially crafted project file, which may allow remote code execution, data exfiltration, or cause a system crash. [email protected] 7.8 2.67% 2019-02-05 2026-06-16
CVE-2018-19000 LCDS Laquis SCADA prior to version 4.1.0.4150 allows an authentication bypass, which may allow an attacker access to sensitive data. [email protected] 5.3 8.79% 2019-02-05 2026-06-16
CVE-2018-18998 LCDS Laquis SCADA prior to version 4.1.0.4150 uses hard coded credentials, which may allow an attacker unauthorized access to the system with high privileges. [email protected] 9.8 2.38% 2019-02-05 2026-06-16
CVE-2018-18996 LCDS Laquis SCADA prior to version 4.1.0.4150 allows taking in user input without proper authorization or sanitation, which may allow an attacker to execute remote code on the server. [email protected] 9.8 2.46% 2019-02-05 2026-06-16
CVE-2018-18992 LCDS Laquis SCADA prior to version 4.1.0.4150 allows taking in user input without proper sanitation, which may allow an attacker to execute remote code on the server. [email protected] 8.8 1.98% 2019-02-05 2026-06-16
CVE-2018-18990 LCDS Laquis SCADA prior to version 4.1.0.4150 allows a user-supplied path in file operations prior to proper validation. An attacker can leverage this vulnerability to disclose sensitive information under the context of the web server process. [email protected] 5.3 39.49% 2019-02-05 2026-06-16
CVE-2018-18986 LCDS Laquis SCADA prior to version 4.1.0.4150 allows the opening of a specially crafted report format file that may cause an out of bounds read, which may cause a system crash, allow data exfiltration, or remote code execution. [email protected] 7.8 2.67% 2019-02-05 2026-06-16
CVE-2018-19004 LCDS Laquis SCADA prior to version 4.1.0.4150 allows out of bounds read when opening a specially crafted project file, which may allow data exfiltration. [email protected] 3.3 3.73% 2019-02-01 2026-06-16
CVE-2018-18988 LCDS Laquis SCADA prior to version 4.1.0.4150 allows execution of script code by opening a specially crafted report format file. This may allow remote code execution, data exfiltration, or cause a system crash. [email protected] 8.8 2.57% 2019-02-01 2026-06-16
CVE-2018-17911 LAquis SCADA Versions 4.1.0.3870 and prior has several stack-based buffer overflow vulnerabilities, which may allow remote code execution. [email protected] 7.8 3.16% 2018-10-16 2026-06-16
CVE-2018-17901 LAquis SCADA Versions 4.1.0.3870 and prior, when processing project files the application fails to sanitize user input prior to performing write operations on a stack object, which may allow an attacker to execute code under the current process. [email protected] 7.8 1.57% 2018-10-16 2026-06-16
CVE-2018-17899 LAquis SCADA Versions 4.1.0.3870 and prior has a path traversal vulnerability, which may allow remote code execution. [email protected] 8.8 8.06% 2018-10-16 2026-06-16
CVE-2018-17897 LAquis SCADA Versions 4.1.0.3870 and prior has several integer overflow to buffer overflow vulnerabilities, which may allow remote code execution. [email protected] 9.8 5.97% 2018-10-16 2026-06-16
CVE-2018-17895 LAquis SCADA Versions 4.1.0.3870 and prior has several out-of-bounds read vulnerabilities, which may allow remote code execution. [email protected] 9.8 4.83% 2018-10-16 2026-06-16
CVE-2018-17893 LAquis SCADA Versions 4.1.0.3870 and prior has an untrusted pointer dereference vulnerability, which may allow remote code execution. [email protected] 9.8 6.38% 2018-10-16 2026-06-16
«« 第一頁 « 上一頁 第 1 / 2 頁 下一頁 »
cvelogic Threat Intelligence