PT-2018-14756 · Advantech · Webaccess/Scada

Jacob Baines

Published

2018-12-19

Updated

2020-09-18

CVE-2018-18999

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions WebAccess/SCADA version 8.3.2

Description The issue is related to the lack of proper validation of user-supplied input, which may allow an attacker to cause a buffer overflow on the stack.

Recommendations For WebAccess/SCADA version 8.3.2, update to a newer version that addresses the input validation issue to prevent potential buffer overflow attacks.

Fix

RCE

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-787

Related Identifiers

CVE-2018-18999

Affected Products

Webaccess/Scada

PT-2018-14756 · Advantech · Webaccess/Scada

CVE-2018-18999

Weakness Enumeration

Related Identifiers

Affected Products

References · 5