Webaccess@8.3.4 Security Vulnerabilities and Issues — Webaccess@8.3.4 CVE List

Lucene search

AdvantechWebaccess8.3.4

3 matches found

CVE•added 2019/04/09 4:29 p.m.•43 views

CVE-2019-3940

Advantech WebAccess 8.3.4 is vulnerable to file upload attacks via unauthenticated RPC call. An unauthenticated, remote attacker can use this vulnerability to execute arbitrary code.

9.8CVSS9.7AI score0.05023EPSS

CVE•added 2019/04/09 4:29 p.m.•39 views

CVE-2019-3941

Advantech WebAccess 8.3.4 allows unauthenticated, remote attackers to delete arbitrary files via IOCTL 10005 RPC.

7.5CVSS7.6AI score0.03204EPSS

CVE•added 2020/04/01 5:15 p.m.•37 views

CVE-2019-3942

Advantech WebAccess 8.3.4 does not properly restrict an RPC call that allows unauthenticated, remote users to read files. An attacker can use this vulnerability to recover the administrator password.

7.5CVSS7.4AI score0.00935EPSS