HIGH🇵🇱 Wersja polska

CVE-2018-10590

CVSS 7.5v3.0pub. 2018-05-15upd. 2024-11-21

In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, and WebAccess/NMS 2.0.3 and prior, an information exposure vulnerability through directory listing has been identified, which may allow an attacker to find important files that are not normally visible.

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  • Advantech Webaccess

    APP
    Advantech
    ≤ 8.2_20170817≤ 8.3.0
  • Advantech Webaccess Dashboard

    APP
    Advantech
    ≤ 2.0.15
  • Advantech Webaccess\/nms

    APP
    Advantech
    ≤ 2.0.3
  • Advantech Webaccess Scada

    APP
    Advantech
    < 8.3.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2021-33023CRITICAL9.8ten sam produkt

Advantech WebAccess versions 9.02 and prior are vulnerable to a heap-based buffer overflow, which may allow an...

CVE-2021-38389CRITICAL9.8ten sam produkt

Advantech WebAccess versions 9.02 and prior are vulnerable to a stack-based buffer overflow, which may allow a...

CVE-2021-38408CRITICAL9.8ten sam produkt

A stack-based buffer overflow vulnerability in Advantech WebAccess Versions 9.02 and prior caused by a lack of...

CVE-2020-12019CRITICAL9.8ten sam produkt

WebAccess Node Version 8.4.4 and prior is vulnerable to a stack-based buffer overflow, which may allow an atta...

CVE-2020-12002CRITICAL9.8ten sam produkt

Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple stack-based buffer overflow vulnera...