CVE-2014-2368

Summary

The BrowseFolder method in the bwocxrun ActiveX control in Advantech WebAccess before 7.2 allows remote attackers to read arbitrary files via a crafted call.

Affected Software

VendorProductVersion RangeStatus
AdvantechWebAccess0 <= 7.1affected
AdvantechWebAccess7.2unaffected

Weaknesses

  • CWE-623: CWE-623

ADP Enrichment

CVE Program Container

Additional References

References