In WebAccess/SCADA, Versions 8.3.5 and prior, a path traversal vulnerability is caused by a lack of proper validation of a user-supplied path prior to use in file operations. An attacker can leverage this vulnerability to delete files while posing as an administrator.
[
{
"product": "WebAccess/SCADA",
"vendor": "WebAccess",
"versions": [
{
"status": "affected",
"version": "Versions 8.3.5 and prior"
}
]
}
]