Описание
The WADashboard component of WebAccess/SCADA Versions 9.0 and prior may allow an attacker to control or influence a path used in an operation on the filesystem and remotely execute code as an administrator.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 9.0.1 (исключая)
cpe:2.3:a:advantech:webaccess\/scada:*:*:*:*:*:*:*:*
EPSS
Процентиль: 70%
0.00625
Низкий
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-73
CWE-610
Связанные уязвимости
github
больше 3 лет назад
The WADashboard component of WebAccess/SCADA Versions 9.0 and prior may allow an attacker to control or influence a path used in an operation on the filesystem and remotely execute code as an administrator.
EPSS
Процентиль: 70%
0.00625
Низкий
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-73
CWE-610