SpiderControl SCADA Webserver versions 2.08 and prior are vulnerable to path traversal. An attacker with administrative privileges could overwrite files on the webserver using the HMI's upload file feature. This could create size zero files anywhere on the webserver, potentially overwriting system files and creating a denial-of-service condition.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2023-08-02T22:26:07.157Z
Updated: 2024-08-02T06:55:03.291Z
Reserved: 2023-06-19T17:52:02.498Z
Link: CVE-2023-3329
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-08-02T23:15:10.547
Modified: 2023-11-07T04:18:31.170
Link: CVE-2023-3329
Redhat
No data.