CVE-2021-22669
N/A
N/A
Summary
Incorrect permissions are set to default on the ‘Project Management’ page of WebAccess/SCADA portal of WebAccess/SCADA Versions 9.0.1 and prior, which may allow a low-privileged user to update an administrator’s password and login as an administrator to escalate privileges on the system.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Advantech WebAccess/SCADA | WebAccess/SCADA Versions 9.0.1 and prior | affected |
Weaknesses
- CWE-732: INCORRECT PERMISSION ASSIGNMENT FOR CRITICAL RESOURCE CWE-732
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.