CVE-2019-18235

Name of the Vulnerable Software and Affected Versions Advantech Spectre RT ERT351 versions 5.1.3 and prior

Description The issue is related to insufficient login authentication parameters in the web application, which may allow an attacker to gain full access using a brute-force password attack. This can be exploited by a remote attacker to guess the administrator's password.

Recommendations For versions 5.1.3 and prior, consider implementing additional authentication measures or restrictions to prevent brute-force attacks until a patch is available. As a temporary workaround, restrict access to the web application to minimize the risk of exploitation. Avoid using default or weak passwords for the administrator account until the issue is resolved.