The vulnerability of the viewsrv.dll library in the webvrpcs software of the Advantech WebAccess monitoring system allows a hacker to read data beyond the buffer in memory.

🗓️ 29 Oct 2019 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Viewsrv.library vulnerability in Advantech WebAccess allows reading memory beyond the buffer due to insufficient input validation.

Reporter	Title	Published	Views	Family All 10
CNVD	Advantech WebAccess/SCADA Buffer Overflow Vulnerability (CNVD-2019-32477)	8 Jul 201900:00	–	cnvd
CVE	CVE-2019-10983	28 Jun 201920:38	–	cve
Cvelist	CVE-2019-10983	28 Jun 201920:38	–	cvelist
EUVD	EUVD-2019-2697	7 Oct 202500:30	–	euvd
ICS	Advantech WebAccess/SCADA	27 Jun 201900:00	–	ics
NVD	CVE-2019-10983	28 Jun 201921:15	–	nvd
OSV	CVE-2019-10983	28 Jun 201921:15	–	osv
Prion	Design/Logic Flaw	28 Jun 201921:15	–	prion
Positive Technologies	PT-2019-3567 · Advantech · Advantech Webaccess	27 Jun 201900:00	–	ptsecurity
Zero Day Initiative	Advantech WebAccess Node viewsrv Out-Of-Bounds Read Information Disclosure Vulnerability	2 Jul 201900:00	–	zdi

Vulners

Node

advantech_co.,advantech_webaccessRange≤8.3.5

Source	Link
securitylab	www.securitylab.ru/news/499681.php
us-cert	www.us-cert.gov/ics/advisories/icsa-19-178-05
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-19-621/
web	www.web.nvd.nist.gov/view/vuln/detail

29 Oct 2019 00:00Current

5.8Medium risk

Vulners AI Score5.8

CVSS 25

CVSS 37.5

EPSS0.0238

viewsrv library advantech webaccess webvrpcs software buffer overread input validation