First published: Tue Sep 22 2020(Updated: )
WebAccess Node (All versions prior to 9.0.1) has incorrect permissions set for resources used by specific services, which may allow code execution with system privileges.
Credit: ics-cert@hq.dhs.gov
Affected Software | Affected Version | How to fix |
---|---|---|
Advantech WebAccess | <9.0.1 | |
Advantech WebAccess Node | <9.0.1 | 9.0.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2020-16202.
The severity of CVE-2020-16202 is high, with a score of 7.8.
The affected software is Advantech WebAccess, all versions prior to 9.0.1.
CVE-2020-16202 is a vulnerability in Advantech WebAccess where incorrect permissions set for resources used by specific services may allow code execution with system privileges.
Yes, a fix is available for CVE-2020-16202. Users should update to version 9.0.1 or later to address the vulnerability.