2 matches found
Advantech WebAccess Denial of Service (CVE-2019-6554)
A denial-of-service vulnerability exists in Advantech WebAccess. The vulnerability is due to improper access control while invoking a command line from user-supplied data. Successful exploitation could result in WebAccess being uninstalled and denial-of-service condition...
CVE-2019-6554
CVE-2019-6554 affects Advantech WebAccess/SCADA prior to 8.4.0. It is an improper access control vulnerability that may allow a remote attacker to cause a denial-of-service by abusing a command invocation path. The ZDI advisory details a flaw in UninstallWA.exe exposed via the 0x2711 IOCTL in the...