CRITICAL🇵🇱 Wersja polska

CVE-2018-7497

CVSS 9.8v3.0pub. 2018-05-15upd. 2024-11-21

In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, and WebAccess/NMS 2.0.3 and prior, several untrusted pointer dereference vulnerabilities have been identified, which may allow an attacker to execute arbitrary code.

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Advantech Webaccess

    APP
    Advantech
    ≤ 8.2_20170817≤ 8.3.0
  • Advantech Webaccess Dashboard

    APP
    Advantech
    ≤ 2.0.15
  • Advantech Webaccess\/nms

    APP
    Advantech
    ≤ 2.0.3
  • Advantech Webaccess Scada

    APP
    Advantech
    < 8.3.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2021-33023CRITICAL9.8ten sam produkt

Advantech WebAccess versions 9.02 and prior are vulnerable to a heap-based buffer overflow, which may allow an...

CVE-2021-38389CRITICAL9.8ten sam produkt

Advantech WebAccess versions 9.02 and prior are vulnerable to a stack-based buffer overflow, which may allow a...

CVE-2021-38408CRITICAL9.8ten sam produkt

A stack-based buffer overflow vulnerability in Advantech WebAccess Versions 9.02 and prior caused by a lack of...

CVE-2020-12019CRITICAL9.8ten sam produkt

WebAccess Node Version 8.4.4 and prior is vulnerable to a stack-based buffer overflow, which may allow an atta...

CVE-2020-12002CRITICAL9.8ten sam produkt

Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple stack-based buffer overflow vulnera...