CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-2368

The BrowseFolder method in the bwocxrun ActiveX control in Advantech WebAccess before 7.2 allows remote attackers to read arbitrary files via a crafted call.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.0%

CVSS Severity

CVSS v2 Score 5.0

References

http://ics-cert.us-cert.gov/advisories/ICSA-14-198-02
http://ics-cert.us-cert.gov/advisories/ICSA-14-198-02

Products affected by CVE-2014-2368

Advantech » Advantech Webaccess » Version: 5.0

cpe:2.3:a:advantech:advantech_webaccess:5.0
Advantech » Advantech Webaccess » Version: 6.0

cpe:2.3:a:advantech:advantech_webaccess:6.0
Advantech » Advantech Webaccess » Version: 7.0

cpe:2.3:a:advantech:advantech_webaccess:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-2368

Products

Pricing

Contact Us