CVE-2020-25161

Summary

The WADashboard component of WebAccess/SCADA Versions 9.0 and prior may allow an attacker to control or influence a path used in an operation on the filesystem and remotely execute code as an administrator.

Affected Software

VendorProductVersion RangeStatus
n/aAdvantech WebAccess/SCADAVersions 9.0 and prioraffected

Weaknesses

  • CWE-73: EXTERNAL CONTROL OF FILE NAME OR PATH CWE-73

ADP Enrichment

CVE Program Container

Additional References

References