How severe is CVE-2020-14501?

CVE-2020-14501 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2020-14501

Name: iview
Author: advantech

9.8CRITICAL

Advantech iView, versions 5.6 and prior, has an improper authentication for critical function (CWE-306) issue. Successful exploitation of this vulnerability may allow an attacker to obtain the informa

Publicado: 7/15/2020Actualizado: 11/21/2024

Descripción

Advantech iView, versions 5.6 and prior, has an improper authentication for critical function (CWE-306) issue. Successful exploitation of this vulnerability may allow an attacker to obtain the information of the user table, including the administrator credentials in plain text. An attacker may also delete the administrator account.

Análisis IAImpulsado por IA

Productos Afectados

advantechiview

Referencias

https://us-cert.cisa.gov/ics/advisories/icsa-20-196-01
Third Party AdvisoryUS Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-20-859/
Third Party Advisory
https://us-cert.cisa.gov/ics/advisories/icsa-20-196-01
Third Party AdvisoryUS Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-20-859/
Third Party Advisory