ID
VAR-202006-1920
TITLE
Advantech WebAccess/SCADA has arbitrary file deletion vulnerability (CNVD-2020-29402)
Trust: 0.6
sources:
CNVD: CNVD-2020-29402
DESCRIPTION
Advantech WebAccess/SCADA is a set of SCADA software based on browser architecture of Chinese company Advantech (Advantech). Advantech WebAccess/SCADA has an arbitrary file deletion vulnerability, which can be exploited by an attacker to delete arbitrary files on the server.
Trust: 0.6
sources:
CNVD: CNVD-2020-29402
IOT TAXONOMY
| category: | ['ICS'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2020-29402
AFFECTED PRODUCTS
| vendor: | advantech | model: | webaccess/scada | scope: | eq | version: | 9.0.0 | Trust: 0.6 |
sources:
CNVD: CNVD-2020-29402
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
CNVD: CNVD-2020-29402
PATCH
| title: | Advantech WebAccess SCADA bwtalk.exe file has system command injection vulnerability | url: | https://www.cnvd.org.cn/patchinfo/show/215709 | Trust: 0.6 |
sources:
CNVD: CNVD-2020-29402
EXTERNAL IDS
| db: | CNVD | id: | CNVD-2020-29402 | Trust: 0.6 |
sources:
CNVD: CNVD-2020-29402
SOURCES
| db: | CNVD | id: | CNVD-2020-29402 |
LAST UPDATE DATE
2022-05-04T10:10:55.576000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2020-29402 | date: | 2020-05-28T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2020-29402 | date: | 2020-06-11T00:00:00 |