First published: Fri Aug 04 2023(Updated: )
This vulnerability allows remote attackers to write arbitrary files on affected installations of Triangle MicroWorks SCADA Data Gateway. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.
Affected Software | Affected Version | How to fix |
---|---|---|
Trianglemicroworks SCADA Data Gateway |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of ZDI-CAN-20535 is high due to its ability to allow remote attackers to write arbitrary files.
To fix ZDI-CAN-20535, apply the latest security patch provided by Triangle MicroWorks for the SCADA Data Gateway.
Exploiting ZDI-CAN-20535 can lead to unauthorized file modifications and potential system compromise.
ZDI-CAN-20535 affects multiple versions of Triangle MicroWorks SCADA Data Gateway with the vulnerable authentication mechanism.
Yes, authentication is required to exploit ZDI-CAN-20535, but the authentication mechanism can be bypassed.