Описание
An issue was discovered in Advantech WebAccess Version 8.1. By accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access pages unrestricted (AUTHENTICATION BYPASS).
Ссылки
- Third Party AdvisoryVDB Entry
- MitigationThird Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- MitigationThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:advantech:webaccess:8.1:*:*:*:*:*:*:*
EPSS
Процентиль: 79%
0.01309
Низкий
9.1 Critical
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-287
Связанные уязвимости
CVSS3: 9.1
github
больше 3 лет назад
An issue was discovered in Advantech WebAccess Version 8.1. By accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access pages unrestricted (AUTHENTICATION BYPASS).
EPSS
Процентиль: 79%
0.01309
Низкий
9.1 Critical
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-287