Advantech WebAccess/SCADA could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a flaw in WADashboard component. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Execute arbitrary code
Advantech WebAccess/SCADA 9.0
Upgrade to the latest version of Advantech WebAccess/SCADA (9.0.1 or later).