VYPR

Susiaccess

by Advantech

CVEs (3)

  • CVE-2016-9349HigFeb 13, 2017
    risk 0.52cvss 7.5epss 0.08

    An issue was discovered in Advantech SUISAccess Server Version 3.0 and prior. An attacker could traverse the file system and extract files that can result in information disclosure.

  • CVE-2016-9353HigFeb 13, 2017
    risk 0.51cvss 7.8epss 0.00

    An issue was discovered in Advantech SUISAccess Server Version 3.0 and prior. The admin password is stored in the system and is encrypted with a static key hard-coded in the program. Attackers could reverse the admin account password for use.

  • CVE-2016-9351HigFeb 13, 2017
    risk 0.49cvss 7.0epss 0.04

    An issue was discovered in Advantech SUISAccess Server Version 3.0 and prior. The directory traversal/file upload error allows an attacker to upload and unpack a zip file.