Lucene search

K
nessusTenable700723.PRM
HistoryMay 27, 2019 - 12:00 a.m.

Advantech WebAccess < 8.3.5 Multiple Vulnerabilities (ICSA-19-092-01)

2019-05-2700:00:00
Tenable
www.tenable.com
13

0.044 Low

EPSS

Percentile

92.4%

The installed version of Advantech WebAccess is prior to 8.3.5 and is affected by the following vulnerabilities :

  • Multiple command injection vulnerabilities, caused by a lack of proper validation of user-supplied data, may allow remote code execution. (CVE-2019-6552)
  • Multiple stack-based buffer overflow vulnerabilities, caused by a lack of proper validation of the length of user-supplied data, may allow remote code execution. (CVE-2019-6550)
  • An improper access control vulnerability may allow an attacker to cause a denial-of-service condition. (CVE-2019-6554)
Binary data 700723.prm
VendorProductVersionCPE
advantechadvantech_webaccesscpe:/a:advantech:advantech_webaccess

0.044 Low

EPSS

Percentile

92.4%