CVE-2017-7929: Path Traversal
First published: Sat May 06 2017(Updated: )
An Absolute Path Traversal issue was discovered in Advantech WebAccess Version 8.1 and prior. The absolute path traversal vulnerability has been identified, which may allow an attacker to traverse the file system to access restricted files or directories.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Advantech WebOP | <=8.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-7929?
CVE-2017-7929 is considered a high severity vulnerability due to its potential for exposing restricted files.
How do I fix CVE-2017-7929?
To mitigate CVE-2017-7929, upgrade Advantech WebAccess to version 8.2 or later.
What type of vulnerability is CVE-2017-7929?
CVE-2017-7929 is an absolute path traversal vulnerability, allowing unauthorized file system access.
Which versions of Advantech WebAccess are affected by CVE-2017-7929?
Advantech WebAccess versions 8.1 and prior are affected by CVE-2017-7929.
Can CVE-2017-7929 lead to data exposure?
Yes, CVE-2017-7929 can lead to unauthorized access and potential exposure of sensitive files.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/advantech
- canonical/advantech webop
- version/advantech webop/8.1