Vulnerability Description
Advantech iView, versions 5.6 and prior, has an improper input validation vulnerability. Successful exploitation of this vulnerability could allow an attacker to remotely execute arbitrary code.
CVSS Score
9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Advantech | Iview | <= 5.6 |
Related Weaknesses (CWE)
References
- https://us-cert.cisa.gov/ics/advisories/icsa-20-196-01Third Party AdvisoryUS Government Resource
- https://www.zerodayinitiative.com/advisories/ZDI-20-834/Third Party AdvisoryVDB Entry
- https://us-cert.cisa.gov/ics/advisories/icsa-20-196-01Third Party AdvisoryUS Government Resource
- https://www.zerodayinitiative.com/advisories/ZDI-20-834/Third Party AdvisoryVDB Entry
FAQ
What is CVE-2020-14503?
CVE-2020-14503 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Advantech iView, versions 5.6 and prior, has an improper input validation vulnerability. Successful exploitation of this vulnerability could allow an attacker to remotely execute arbitrary code.
How severe is CVE-2020-14503?
CVE-2020-14503 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2020-14503?
Check the references section above for vendor advisories and patch information. Affected products include: Advantech Iview.