Rewterz Threat Advisory – Multiple Google Chrome Vulnerabilities
May 31, 2023Rewterz Threat Alert – AveMaria RAT aka WarzoneRAT – Active IOCs
May 31, 2023Rewterz Threat Advisory – Multiple Google Chrome Vulnerabilities
May 31, 2023Rewterz Threat Alert – AveMaria RAT aka WarzoneRAT – Active IOCs
May 31, 2023Severity
High
Analysis Summary
CVE-2023-2866
Advantech WebAccess/SCADA could allow a remote authenticated attacker to execute arbitrary code on the system, caused by the improper validation of ZIP archive contents by the WebAccess Dashboard component. By persuading a victim to load a specially crafted ZIP archive file, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
- Code Execution
Indicators Of Compromise
CVE
- CVE-2023-2866
Affected Vendors
Advantech
Affected Products
- Advantech WebAccess/SCADA 8.4.5
Remediation
Upgrade to the latest version of WebAccess/SCADA, available from the Advantech Web site.