Lucene search
TenableCVELIST:CVE-2018-15705HistoryOct 31, 2018 - 12:00 a.m.
CVE-2018-15705
2018-10-3100:00:00
tenable
www.cve.org
WADashboard API in Advantech WebAccess 8.3.1 and 8.3.2 allows remote authenticated attackers to write or overwrite any file on the filesystem due to a directory traversal vulnerability in the writeFile API. An attacker can use this vulnerability to remotely execute arbitrary code.
CNA Affected
[
{
"product": "Advantech WebAccess",
"vendor": "Advantech",
"versions": [
{
"status": "affected",
"version": "8.3.1 and 8.3.2"
}
]
}
]Related
cve
cve
CVE-2018-15705
2018-10-31 22:29:00
nvd
nvd
CVE-2018-15705
2018-10-31 22:29:00
prion
prion
Directory traversal
2018-10-31 22:29:00
packetstorm
packetstorm
Advantech WebAccess SCADA 8.3.2 Remote Code Execution
2018-11-05 00:00:00
checkpoint_advisories
checkpoint_advisories
Advantech WebAccess Remote Code Execution (CVE-2018-15705; CVE-2018-15707)
2018-11-13 00:00:00
exploitpack
exploitpack
Advantech WebAccess SCADA 8.3.2 - Remote Code Execution
2018-11-05 00:00:00
zdt
zdt
Advantech WebAccess SCADA 8.3.2 - Remote Code Execution Exploit
2018-11-05 00:00:00
exploitdb
exploitdb
Advantech WebAccess SCADA 8.3.2 - Remote Code Execution
2018-11-05 00:00:00