CVE-2024-9414 Information

Description

In LAquis SCADA version 4.7.1.511 a cross-site scripting vulnerability could allow an attacker to inject arbitrary code into a web page. This could allow an attacker to steal cookies redirect users or perform unauthorized actions.

Reference

https://www.cisa.gov/news-events/ics-advisories/icsa-24-291-02