CVE-2023-32540
CVSS V2 None
CVSS V3 None
Description
In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file overwrite vulnerability, which could allow an attacker to overwrite any file in the operating system (including system files), inject code into an XLS file, and modify the file extension, which could lead to arbitrary code execution.
Overview
- CVE ID
- CVE-2023-32540
- Assigner
- icscert
- Vulnerability Status
- PUBLISHED
- Published Version
- 2023-06-05T23:16:28.045Z
- Last Modified Date
- 2023-06-05T23:16:28.045Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://www.cisa.gov/news-events/ics-advisories/icsa-23-152-01 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-32540 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32540 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-25 11:41:11 | Added to TrackCVE |