CVE-2020-16215

Name of the Vulnerable Software and Affected Versions Advantech WebAccess HMI Designer versions 2.1.9.31 and prior

Description The issue arises from processing specially crafted project files that lack proper validation of user-supplied data, leading to a stack-based buffer overflow. This may result in remote code execution, disclosure or modification of information, or cause the application to crash.

Recommendations For Advantech WebAccess HMI Designer versions 2.1.9.31 and prior, update to a version later than 2.1.9.31 to resolve the issue. As a temporary workaround, consider restricting the processing of project files from untrusted sources to minimize the risk of exploitation.