How severe is CVE-2020-14501?

CVE-2020-14501 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2020-14501

Name: iview
Author: advantech

9.8CRITICAL

Advantech iView, versions 5.6 and prior, has an improper authentication for critical function (CWE-306) issue. Successful exploitation of this vulnerability may allow an attacker to obtain the informa

发布于: 7/15/2020更新于: 11/21/2024

描述

Advantech iView, versions 5.6 and prior, has an improper authentication for critical function (CWE-306) issue. Successful exploitation of this vulnerability may allow an attacker to obtain the information of the user table, including the administrator credentials in plain text. An attacker may also delete the administrator account.

AI分析AI驱动

受影响产品

advantechiview

参考资料

https://us-cert.cisa.gov/ics/advisories/icsa-20-196-01
Third Party AdvisoryUS Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-20-859/
Third Party Advisory
https://us-cert.cisa.gov/ics/advisories/icsa-20-196-01
Third Party AdvisoryUS Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-20-859/
Third Party Advisory