VYPR
Unrated severityNVD Advisory· Published Mar 11, 2013· Updated Jun 16, 2026

CVE-2013-1627

CVE-2013-1627

Description

Absolute path traversal vulnerability in NTWebServer.exe in Indusoft Studio 7.0 and earlier and Advantech Studio 7.0 and earlier allows remote attackers to read arbitrary files via a full pathname in an argument to the sub_401A90 CreateFileW function.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

8
  • Advantech/Studio3 versions
    cpe:2.3:a:advantech:advantech_studio:6.1:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:advantech:advantech_studio:6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:advantech:advantech_studio:6.1:sp6_61.6.01.05:*:*:*:*:*:*
    • (no CPE)range: <=7.0
  • cpe:2.3:a:indusoft:web_studio:6.1:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:indusoft:web_studio:6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:indusoft:web_studio:6.1:sp6:*:*:*:*:*:*
    • cpe:2.3:a:indusoft:web_studio:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:indusoft:web_studio:7.0b2:hotfix7.0.01.04:*:*:*:*:*:*
    • (no CPE)range: <=7.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.