PT-2017-12664 · Advantech · Webaccess
Publicado
2017-08-30
·
Atualizado
2019-10-09
·
CVE-2017-12711
CVSS v3.1
7.8
Alta
| Vetor | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Advantech WebAccess versions prior to V8.2 20170817
Description
An issue with incorrect privilege assignment was found, where a built-in user account was granted a sensitive privilege. This could potentially allow a user to elevate their privileges to administrative level.
Recommendations
For versions prior to V8.2 20170817, update to version V8.2 20170817 or later to resolve the issue.
Correção
Incorrect Privilege Assignment
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Webaccess