CVE-2019-13550
CRITICALAdvantech WebAccess < 8.4.1 - Improper Authorization
Title source: llmDescription
In WebAccess, versions 8.4.1 and prior, an improper authorization vulnerability may allow an attacker to disclose sensitive information, cause improper control of generation of code, which may allow remote code execution or cause a system crash.
References (1)
Core 1
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://www.us-cert.gov/ics/advisories/icsa-19-260-01
Scores
CVSS v3
9.8
EPSS
0.0073
EPSS Percentile
72.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-285
Status
published
Products (1)
advantech/webaccess
< 8.4.1
Published
Sep 18, 2019
Tracked Since
Feb 18, 2026