Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistIcscertCVELIST:CVE-2018-8841
HistoryMay 15, 2018 - 12:00 a.m.

CVE-2018-8841

2018-05-1500:00:00
CWE-269
icscert
www.cve.org

7.4 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

18.2%

JSON

In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, and WebAccess/NMS 2.0.3 and prior, an improper privilege management vulnerability may allow an authenticated user to modify files when read access should only be given to the user.

CNA Affected

[
  {
    "product": "WebAccess",
    "vendor": "Advantech",
    "versions": [
      {
        "status": "affected",
        "version": "WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, WebAccess/NMS 2.0.3 and prior."
      }
    ]
  }
]

Related

nvd 1
cve 1
prion 1
zdi 1
ics 1
nvd
nvd
CVE-2018-8841
2018-05-15 22:29:00
cve
cve
CVE-2018-8841
2018-05-15 22:29:00
prion
prion
Privilege escalation
2018-05-15 22:29:00
zdi
zdi
Advantech WebAccess Node Product Installation File Access Control Modification Privilege Escalation Vulnerability
2018-05-18 00:00:00
ics
ics
Advantech WebAccess
2018-05-18 12:00:00

7.4 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

18.2%

JSON
Related for CVELIST:CVE-2018-8841
nvd1cve1prion1zdi1ics1