Описание
An Absolute Path Traversal issue was discovered in Advantech WebAccess Version 8.1 and prior. The absolute path traversal vulnerability has been identified, which may allow an attacker to traverse the file system to access restricted files or directories.
Ссылки
- Third Party AdvisoryVDB Entry
- MitigationThird Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- MitigationThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 8.1 (включая)
cpe:2.3:a:advantech:webaccess:*:*:*:*:*:*:*:*
EPSS
Процентиль: 72%
0.00762
Низкий
7.1 High
CVSS3
5.5 Medium
CVSS2
Дефекты
CWE-36
CWE-22
Связанные уязвимости
CVSS3: 7.1
github
около 3 лет назад
An Absolute Path Traversal issue was discovered in Advantech WebAccess Version 8.1 and prior. The absolute path traversal vulnerability has been identified, which may allow an attacker to traverse the file system to access restricted files or directories.
EPSS
Процентиль: 72%
0.00762
Низкий
7.1 High
CVSS3
5.5 Medium
CVSS2
Дефекты
CWE-36
CWE-22