Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple relative path traversal vulnerabilities exist that may allow an authenticated user to use a specially crafted file to delete files outside the application’s control.
References
Link | Resource |
---|---|
https://www.us-cert.gov/ics/advisories/icsa-20-128-01 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
|
Information
Published : 2020-05-08 05:15
Updated : 2021-09-23 06:41
NVD link : CVE-2020-12010
Mitre link : CVE-2020-12010
JSON object : View
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Products Affected
advantech
- webaccess