Lucene search
IcscertCVELIST:CVE-2018-10591HistoryMay 15, 2018 - 12:00 a.m.
CVE-2018-10591
2018-05-1500:00:00
CWE-346
icscert
www.cve.org
In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, and WebAccess/NMS 2.0.3 and prior, an origin validation error vulnerability has been identified, which may allow an attacker can create a malicious web site, steal session cookies, and access data of authenticated users.
CNA Affected
[
{
"product": "WebAccess",
"vendor": "Advantech",
"versions": [
{
"status": "affected",
"version": "WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, WebAccess/NMS 2.0.3 and prior."
}
]
}
]Related
cve
cve
CVE-2018-10591
2018-05-15 22:29:00
nvd
nvd
CVE-2018-10591
2018-05-15 22:29:00
prion
prion
Input validation
2018-05-15 22:29:00
ics
ics
Advantech WebAccess
2018-05-18 12:00:00