CVE-2020-16245
CVE-2020-16245
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 7.7%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
25 ago 2020Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Advantech iView, Versions 5.7 and prior. The affected product is vulnerable to path traversal vulnerabilities that could allow an attacker to create/download arbitrary files, limit system availability, and remotely execute code.
Productos afectados
n/a · Advantech iView¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
https://us-cert.cisa.gov/ics/advisories/icsa-20-238-01https://www.zerodayinitiative.com/advisories/ZDI-20-1084/https://www.zerodayinitiative.com/advisories/ZDI-20-1085/https://www.zerodayinitiative.com/advisories/ZDI-20-1086/https://www.zerodayinitiative.com/advisories/ZDI-20-1087/https://www.zerodayinitiative.com/advisories/ZDI-20-1088/https://www.zerodayinitiative.com/advisories/ZDI-20-1089/https://www.zerodayinitiative.com/advisories/ZDI-20-1090/https://www.zerodayinitiative.com/advisories/ZDI-20-1091/https://www.zerodayinitiative.com/advisories/ZDI-20-1092/