virus logo Intrusion Prevention

Advantech.WA.IOCTL.10001.BwFLApp.Arbitrary.File.Deletion

description-logoDescription

This indicates an attack attempt to exploit an Arbitrary File Deletion Vulnerability in Advantech WebAccess.
The vulnerability is due to insufficient validation on user supplied paths before using them in file operations within BwFLApp.exe. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted request to the target system. Successful exploitation results in the deletion of arbitrary files from the target system, and may lead to denial of service conditions if important executables or libraries are deleted.

affected-products-logoAffected Products

Advantech WebAccess

Impact logoImpact

Denial of Service: Remote attackers can crash vulnerable systems.

recomended-action-logoRecommended Actions

Advantech has not released an advisory regarding this vulnerability.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-05-26 15.851 Default_action:pass:drop
2020-05-14 15.845
ID 48969
Created May 14, 2020
Updated Jul 17, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows
Affected App SCADA