How severe is CVE-2020-14501?

CVE-2020-14501 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2020-14501

Name: iview
Author: advantech

9.8CRITICAL

Advantech iView, versions 5.6 and prior, has an improper authentication for critical function (CWE-306) issue. Successful exploitation of this vulnerability may allow an attacker to obtain the informa

Опубликовано: 7/15/2020Обновлено: 11/21/2024

Описание

Advantech iView, versions 5.6 and prior, has an improper authentication for critical function (CWE-306) issue. Successful exploitation of this vulnerability may allow an attacker to obtain the information of the user table, including the administrator credentials in plain text. An attacker may also delete the administrator account.

ИИ-АнализНа базе ИИ

Затронутые продукты

advantechiview

Ссылки

https://us-cert.cisa.gov/ics/advisories/icsa-20-196-01
Third Party AdvisoryUS Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-20-859/
Third Party Advisory
https://us-cert.cisa.gov/ics/advisories/icsa-20-196-01
Third Party AdvisoryUS Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-20-859/
Third Party Advisory