PT-2017-12664 · Advantech · Webaccess
Published
2017-08-30
·
Updated
2019-10-09
·
CVE-2017-12711
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Advantech WebAccess versions prior to V8.2 20170817
Description
An issue with incorrect privilege assignment was found, where a built-in user account was granted a sensitive privilege. This could potentially allow a user to elevate their privileges to administrative level.
Recommendations
For versions prior to V8.2 20170817, update to version V8.2 20170817 or later to resolve the issue.
Fix
Incorrect Privilege Assignment
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Webaccess