How severe is CVE-2020-14501?

CVE-2020-14501 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2020-14501

Name: iview
Author: advantech

9.8CRITICAL

Advantech iView, versions 5.6 and prior, has an improper authentication for critical function (CWE-306) issue. Successful exploitation of this vulnerability may allow an attacker to obtain the informa

Published: 7/15/2020Updated: 11/21/2024

Description

Advantech iView, versions 5.6 and prior, has an improper authentication for critical function (CWE-306) issue. Successful exploitation of this vulnerability may allow an attacker to obtain the information of the user table, including the administrator credentials in plain text. An attacker may also delete the administrator account.

AI AnalysisPowered by AI

Affected Products

advantechiview

References

https://us-cert.cisa.gov/ics/advisories/icsa-20-196-01
Third Party AdvisoryUS Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-20-859/
Third Party Advisory
https://us-cert.cisa.gov/ics/advisories/icsa-20-196-01
Third Party AdvisoryUS Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-20-859/
Third Party Advisory