CVE-2012-0239

2012-02-2111:00:00

certcc

www.cve.org

6.7 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.4%

JSON

uaddUpAdmin.asp in Advantech/BroadWin WebAccess before 7.0 does not properly perform authentication, which allows remote attackers to modify an administrative password via a password-change request.

References

www.securityfocus.com/bid/52051

www.us-cert.gov/control_systems/pdf/ICSA-12-047-01.pdf