How severe is CVE-2020-14501?

CVE-2020-14501 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2020-14501

Name: iview
Author: advantech

9.8CRITICAL

Advantech iView, versions 5.6 and prior, has an improper authentication for critical function (CWE-306) issue. Successful exploitation of this vulnerability may allow an attacker to obtain the informa

Publicado: 7/15/2020Atualizado: 11/21/2024

Descrição

Advantech iView, versions 5.6 and prior, has an improper authentication for critical function (CWE-306) issue. Successful exploitation of this vulnerability may allow an attacker to obtain the information of the user table, including the administrator credentials in plain text. An attacker may also delete the administrator account.

Análise IADesenvolvido por IA

Produtos Afetados

advantechiview

Referências

https://us-cert.cisa.gov/ics/advisories/icsa-20-196-01
Third Party AdvisoryUS Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-20-859/
Third Party Advisory
https://us-cert.cisa.gov/ics/advisories/icsa-20-196-01
Third Party AdvisoryUS Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-20-859/
Third Party Advisory