{"vulnerability": "CVE-2020-13555", "sightings": [{"uuid": "d6935dad-9747-4c84-8007-a0b6bdd05103", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-13555", "type": "seen", "source": "https://t.me/cibsecurity/23770", "content": "\u203c CVE-2020-13555 \u203c\n\nAn exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In COM Server Application Privilege Escalation, an attacker can either replace binary or loaded modules to execute code with NT SYSTEM privilege.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-02-17T22:49:18.000000Z"}, {"uuid": "926086b1-7765-4cbb-bae4-292ee7e57d3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-13555", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/2750", "content": "#SCADA_Security\nVulnerabilities in Advantech WebAccess/SCADA\n1. CVE-2020-13550:\nAdvantech WebAccess/SCADA installation local file inclusion (PoC)\nhttps://talosintelligence.com/vulnerability_reports/TALOS-2020-1168\n2. CVE-2020-13551, CVE-2020-13552, CVE-2020-13553, CVE-2020-13554, CVE-2020-13555:\nAdvantech WebAccess/SCADA installation privilege escalation vulnerability (PoCs)\nhttps://talosintelligence.com/vulnerability_reports/TALOS-2020-1169", "creation_timestamp": "2021-02-21T12:53:01.000000Z"}]}