CVE-2023-32540
published 2023-06-06CVE-2023-32540: In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file overwrite vulnerability, which could allow an attacker to overwrite any file in the…
PriorityP357critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.90%
55.1th percentile
In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file overwrite vulnerability, which could allow an attacker to overwrite any file in the operating system (including system files), inject code into an XLS file, and modify the file extension, which could lead to arbitrary code execution.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| advantech | webaccess_scada | <= 9.1.3 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Advantech WebAccess/SCADA
cisa_ics·2023-06-01·CVSS 7.2
[HIGH] Advantech WebAccess/SCADA
ICS Advisory
##
Advantech WebAccess/SCADA
Release DateJune 01, 2023
Alert CodeICSA-23-152-01
## 1. EXECUTIVE SUMMARY
- CVSS v3 7.2
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Advantech
- Equipment: WebAccess Node
- Vulnerabilities: Improper Control of Generation of Code ('Code Injection'), Unrestricted Upload of File with Dangerous Type
## 2. RISK EVALUATION
Successful exploitation of these vulnerabilities could allow an attacker to arbitrarily overwrite files resulting in remote code execution.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
The following Advantech products are affected:
- WebAccess/SCADA versions 9.1.3 and prior
## 3.2 VULNERABILITY OVERVIEW
3.2.1 IMPROPER CONTROL OF GENERATION OF CODE ('CODE INJECTION') CWE-9
GHSA
GHSA-g8xw-m45c-jphf: In Advantech WebAccss/SCADA v9
ghsa_unreviewed·2023-06-06
CVE-2023-32540 [CRITICAL] CWE-94 GHSA-g8xw-m45c-jphf: In Advantech WebAccss/SCADA v9
In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file overwrite vulnerability, which could allow an attacker to overwrite any file in the operating system (including system files), inject code into an XLS file, and modify the file extension, which could lead to arbitrary code execution.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-06-06
Published