Headline

CVE-2022-41976: Scada-LTS

An privilege escalation issue was discovered in Scada-LTS 2.7.1.1 build 2948559113 allows remote attackers, authenticated in the application as a low-privileged user to change role (e.g., to administrator) by updating their user profile.

1 year ago

CVE

Open in Source

#sql #web #mac #windows #linux #git #java #auth

The Project
Specifications
Documentation
Downloads

Open Source software for Supervisory Control and Data Acquisition

Scada-LTS is an Open Source, web-based, multi-platform solution for building your own SCADA (Supervisory Control and Data Acquisiton) system.

It comes bundled with many years of experience in real-world SCADA applications for Energy, Water Distribution, Manufacturing Plants, Home Automation, Laboratories… you name it!

Scada-LTS includes everything you need to get started in a few minutes: Communication Protocols, the data acquisition engine, Alarms & Events, HMI Builder and much more.

Our goal is to provide a rock-solid solution for mission-critical applications, while sharing knowledge and benefitting from an international and ever-growing community.

Technical Specifications

Software Architecture

Developed in Java - Server will run in any Architecture (PC/Mac/Linux)
Released in .WAR (multi-platform) and Windows Installer
User interface runs from a standard web-browser. No client installation needed.
SOAP and REST API´s for custom integration.

Standard Features

Data Acquisition Engine (for many popular pushed and polled protocols)
Watchlist - see datapoints updating in realtime
Datasources and Datapoint Hierarchies - organize your data
Graphical Views Builder (also known as HMI: Human-Machine Interface)
Data Reports with charts
User-based access with detailed permission settings
Scripting Engine for on-the-fly value calculations, setpoints and commands issuing
Multi-language with English, Portuguese, Spanish… and more coming

Communication Protocols