Описание
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple relative path traversal vulnerabilities exist that may allow an authenticated user to use a specially crafted file to delete files outside the application’s control.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 8.4.4 (включая)
Одно из
cpe:2.3:a:advantech:webaccess:*:*:*:*:*:*:*:*
cpe:2.3:a:advantech:webaccess:9.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00578
Низкий
7.1 High
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-23
CWE-22
Связанные уязвимости
github
больше 3 лет назад
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple relative path traversal vulnerabilities exist that may allow an authenticated user to use a specially crafted file to delete files outside the application’s control.
EPSS
Процентиль: 68%
0.00578
Низкий
7.1 High
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-23
CWE-22