CVE-2017-16720

CRITICAL

WebAccess <8.3.2 - Path Traversal

Title source: llm

Description

A Path Traversal issue was discovered in WebAccess versions 8.3.2 and earlier. An attacker has access to files within the directory structure of the target device.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Chris Lyne · pythonwebappswindows
https://www.exploit-db.com/exploits/44278
nomisec WORKING POC 1 stars
by CN016 · poc
https://github.com/CN016/WebAccess-CVE-2017-16720-

References (5)

Scores

CVSS v3 9.8
EPSS 0.2185
EPSS Percentile 95.8%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-22
Status published
Products (1)
advantech/webaccess < 8.3.2
Published Jan 05, 2018
Tracked Since Feb 18, 2026