You are here

Advantech iView (ICSA-20-238-01) – Product Used in the Water and Wastewater and Energy Sectors

Advantech iView (ICSA-20-238-01) – Product Used in the Water and Wastewater and Energy Sectors

Created: Thursday, August 27, 2020 - 05:30
Categories:
Cybersecurity

CISA has published an advisory on a path traversal vulnerability in Advantech iView. iView Versions 5.7 and prior are affected. Successful exploitation of this vulnerability could allow an attacker to read/modify information, execute arbitrary code, limit system availability, and/or crash the application. Advantech has released Version 5.7.02 of iView to address the reported vulnerability. CISA also CISA also recommends a series of measures to mitigate the vulnerability. Read the advisory at CISA.