CVE-2018-15706

Summary

WADashboard API in Advantech WebAccess 8.3.1 and 8.3.2 allows remote authenticated attackers to read any file on the filesystem due to a directory traversal vulnerability in the readFile API.

Affected Software

VendorProductVersion RangeStatus
AdvantechAdvantech WebAccess8.3.1 and 8.3.2affected

Weaknesses

  • Directory Traversal

ADP Enrichment

CVE Program Container

Additional References

References