CVE-2019-3940

Summary

Advantech WebAccess 8.3.4 is vulnerable to file upload attacks via unauthenticated RPC call. An unauthenticated, remote attacker can use this vulnerability to execute arbitrary code.

Affected Software

VendorProductVersion RangeStatus
AdvantechWebAccess8.3.4affected

Weaknesses

  • CWE-434: CWE-434 Unrestricted File Upload

ADP Enrichment

CVE Program Container

Additional References

References