This content is restricted.
Brief
Summary:
The View CSAF document provides information on a vulnerability in Advantech WebAccess Version 9.1.3, which exposes user credentials to an unauthorized actor. The vulnerability, designated as CVE-2023-4215, has a CVSS v3 base score of 6.5. The affected product, Advantech WebAccess Version 9.1.3, is a web-based interface for configuring and monitoring industrial control systems. Successful exploitation of this vulnerability could lead to the leak of user credentials.
The document provides technical details on the vulnerability, including its background, affected products, and mitigations. The vendor, Advantech, recommends updating to Version 9.1.4, while the US Cybersecurity and Infrastructure Security Agency (CISA) recommends minimizing network exposure, locating control systems behind firewalls, and implementing defensive measures such as using Virtual Private Networks (VPNs).
Highlights content goes here...
This content is restricted.
