EUVD-2018-2663

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Vulnerability in Advantech WebAccess allows attackers to steal session cookies and access data.

Reporter	Title	Published	Views	Family All 6
CNVD	Advantech WebAccess Source Validation Error Vulnerability	16 May 201800:00	–	cnvd
CVE	CVE-2018-10591	15 May 201822:00	–	cve
Cvelist	CVE-2018-10591	15 May 201822:00	–	cvelist
ICS	Advantech WebAccess	15 May 201800:00	–	ics
NVD	CVE-2018-10591	15 May 201822:29	–	nvd
Prion	Input validation	15 May 201822:29	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "a7efee0f-b8c4-38cf-b99b-16c537c9ca61",
        "vendor": {
          "name": "Advantech"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "1976d224-0d49-3d65-9b25-be2bc2ef3394",
        "product": {
          "name": "WebAccess"
        },
        "product_version": "WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, WebAccess/NMS 2.0.3 and prior."
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/104190
ics-cert	www.ics-cert.us-cert.gov/advisories/ICSA-18-135-01
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.7Medium risk

Vulners AI Score6.7

CVSS 36.1

CVSS 22.6

EPSS0.00159