CVE-2019-3942

Advantech WebAccess 8.3.4 does not properly restrict an RPC call that allows unauthenticated, remote users to read files. An attacker can use this vulnerability to recover the administrator password.
References
Link Resource
https://www.tenable.com/security/research/tra-2019-15 Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:advantech:webaccess:8.3.4:*:*:*:*:*:*:*

Information

Published : 2020-04-01 05:15

Updated : 2020-04-02 03:30


NVD link : CVE-2019-3942

Mitre link : CVE-2019-3942

Products Affected
No products.
CWE