CVE-2020-16245
CVE-2020-16245
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS —EPSS 7.7%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
25 ago 2020Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
Advantech iView, Versions 5.7 and prior. The affected product is vulnerable to path traversal vulnerabilities that could allow an attacker to create/download arbitrary files, limit system availability, and remotely execute code.
Produtos afetados
n/a · Advantech iViewQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://us-cert.cisa.gov/ics/advisories/icsa-20-238-01https://www.zerodayinitiative.com/advisories/ZDI-20-1084/https://www.zerodayinitiative.com/advisories/ZDI-20-1085/https://www.zerodayinitiative.com/advisories/ZDI-20-1086/https://www.zerodayinitiative.com/advisories/ZDI-20-1087/https://www.zerodayinitiative.com/advisories/ZDI-20-1088/https://www.zerodayinitiative.com/advisories/ZDI-20-1089/https://www.zerodayinitiative.com/advisories/ZDI-20-1090/https://www.zerodayinitiative.com/advisories/ZDI-20-1091/https://www.zerodayinitiative.com/advisories/ZDI-20-1092/