CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-32628

In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file upload vulnerability that could allow an attacker to modify the file extension of a certificate file to ASP when uploading it, which can lead to remote code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 44.2%

CVSS Severity

CVSS v3 Score 7.2

References

Products affected by CVE-2023-32628

Advantech » Webaccess/scada » Version: N/A

cpe:2.3:a:advantech:webaccess/scada:-
Advantech » Webaccess/scada » Version: 7.2

cpe:2.3:a:advantech:webaccess/scada:7.2
Advantech » Webaccess/scada » Version: 8.0

cpe:2.3:a:advantech:webaccess/scada:8.0
Advantech » Webaccess/scada » Version: 8.1

cpe:2.3:a:advantech:webaccess/scada:8.1
Advantech » Webaccess/scada » Version: 8.2

cpe:2.3:a:advantech:webaccess/scada:8.2
Advantech » Webaccess/scada » Version: 8.2_20170817

cpe:2.3:a:advantech:webaccess/scada:8.2_20170817
Advantech » Webaccess/scada » Version: 8.3

cpe:2.3:a:advantech:webaccess/scada:8.3
Advantech » Webaccess/scada » Version: 8.3.2

cpe:2.3:a:advantech:webaccess/scada:8.3.2
Advantech » Webaccess/scada » Version: 8.4.5

cpe:2.3:a:advantech:webaccess/scada:8.4.5
Advantech » Webaccess/scada » Version: 9.0

cpe:2.3:a:advantech:webaccess/scada:9.0
Advantech » Webaccess/scada » Version: 9.0.1

cpe:2.3:a:advantech:webaccess/scada:9.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-32628

Products

Pricing

Contact Us