CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-32540

In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file overwrite vulnerability, which could allow an attacker to overwrite any file in the operating system (including system files), inject code into an XLS file, and modify the file extension, which could lead to arbitrary code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.6%

CVSS Severity

CVSS v3 Score 7.2

References

Products affected by CVE-2023-32540

Advantech » Webaccess/scada » Version: N/A

cpe:2.3:a:advantech:webaccess/scada:-
Advantech » Webaccess/scada » Version: 7.2

cpe:2.3:a:advantech:webaccess/scada:7.2
Advantech » Webaccess/scada » Version: 8.0

cpe:2.3:a:advantech:webaccess/scada:8.0
Advantech » Webaccess/scada » Version: 8.1

cpe:2.3:a:advantech:webaccess/scada:8.1
Advantech » Webaccess/scada » Version: 8.2

cpe:2.3:a:advantech:webaccess/scada:8.2
Advantech » Webaccess/scada » Version: 8.2_20170817

cpe:2.3:a:advantech:webaccess/scada:8.2_20170817
Advantech » Webaccess/scada » Version: 8.3

cpe:2.3:a:advantech:webaccess/scada:8.3
Advantech » Webaccess/scada » Version: 8.3.2

cpe:2.3:a:advantech:webaccess/scada:8.3.2
Advantech » Webaccess/scada » Version: 8.4.5

cpe:2.3:a:advantech:webaccess/scada:8.4.5
Advantech » Webaccess/scada » Version: 9.0

cpe:2.3:a:advantech:webaccess/scada:9.0
Advantech » Webaccess/scada » Version: 9.0.1

cpe:2.3:a:advantech:webaccess/scada:9.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-32540

Products

Pricing

Contact Us