Main Vulnerability Database Vulnerabilities #VU21207

Improper access control in WebAccess/SCADA - CVE-2019-3941

Published: September 19, 2019

Vulnerability identifier: #VU21207

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2019-3941

CWE-ID: CWE-284

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Advantech Co., Ltd

Affected software:
WebAccess/SCADA

Detailed vulnerability description

The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to the "webvrpcs.exe" accepts unauthenticated RPC calls to perform remote file operations including fopen, fseek, ftell, fread, fwrite, and fclose. A remote attacker can send a specially crafted IOCTL 10005 RPC call to the application, bypass implemented security restrictions and download arbitrary files from the remote host.

How to mitigate CVE-2019-3941

Install updates from vendor's website.

Sources

https://www.tenable.com/security/research/tra-2019-15

Improper access control in WebAccess/SCADA - CVE-2019-3941

Detailed vulnerability description

How to mitigate CVE-2019-3941

Sources

Please verify you're human