CVE-2018-17908

Name of the Vulnerable Software and Affected Versions WebAccess versions 8.3.2 and prior

Description The issue arises during the installation of the application, where the installer disables user access control but fails to re-enable it after the installation is complete. This could allow an attacker to run elevated arbitrary code, potentially leading to privilege escalation.

Recommendations For WebAccess versions 8.3.2 and prior, consider re-enabling user access control manually after installation as a temporary workaround. Restrict access to sensitive areas of the system to minimize the risk of exploitation until a proper fix is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.