CVE-2021-32989 Information

Description

When a non-existent resource is requested the LCDS LAquis SCADA application (version 4.3.1.1011 and prior) returns error messages which may allow reflected cross-site scripting.

Reference

https://www.cisa.gov/uscert/ics/advisories/icsa-21-208-04