CVE-2021-22674

6.5MEDIUM

Key Information

Vendor: Advantech
Status: Webaccess/scada
Vendor: CVE Published:; 10 August 2021

Summary

The affected product is vulnerable to a relative path traversal condition, which may allow an attacker access to unauthorized files and directories on the WebAccess/SCADA (WebAccess/SCADA versions prior to 8.4.5, WebAccess/SCADA versions prior to 9.0.1).

Affected Version(s)

WebAccess/SCADA = WebAccess/SCADA versions prior to 8.4.5, WebAccess/SCADA versions prior to 9.0.1

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
Aug 10, 2021
Vulnerability Reserved.
Jan 5, 2021

Collectors

NVD DatabaseMitre Database