Vulnerability in Advantech Advantech_webaccess

CVE-2014-2365

Unspecified vulnerability in Advantech WebAccess before 7.2 allows remote authenticated users to create or delete arbitrary files via unknown vectors.

EPSS: 0.003 (52.7th percentile) — read the EPSS interpretation.

Affected products

Advantech Advantech_webaccess — versions 5.0, 6.0, 7.0
Advantech Webaccess — versions 7.2, 0

Weakness classification (CWE)

CWE-284 — Improper Access Control

References

ics-cert@hq.dhs.gov
68714
af854a3a-2127-422b-91ae-364da2661108 (Third Party Advisory, US Government Resource)