Описание
Access to the Advantech iView versions prior to v5.7.03.6112 configuration are missing authentication, which may allow an unauthorized attacker to change the configuration and obtain code execution.
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- ExploitThird Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 5.7.03.6112 (исключая)
cpe:2.3:a:advantech:iview:*:*:*:*:*:*:*:*
EPSS
Процентиль: 97%
0.4086
Средний
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-306
CWE-306
Связанные уязвимости
github
около 3 лет назад
Access to the Advantech iView versions prior to v5.7.03.6112 configuration are missing authentication, which may allow an unauthorized attacker to change the configuration and obtain code execution.
EPSS
Процентиль: 97%
0.4086
Средний
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-306
CWE-306