Arbitrary File Overwrite Vulnerability in Advantech WebAccess/SCADA v9.1.3 and Prior

Arbitrary File Overwrite Vulnerability in Advantech WebAccess/SCADA v9.1.3 and Prior

CVE-2023-32540 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file overwrite vulnerability, which could allow an attacker to overwrite any file in the operating system (including system files), inject code into an XLS file, and modify the file extension, which could lead to arbitrary code execution.

Learn more about our Web App Pen Testing.