Lucene search
Tenable700723.PRMHistoryMay 27, 2019 - 12:00 a.m.
Advantech WebAccess < 8.3.5 Multiple Vulnerabilities (ICSA-19-092-01)
2019-05-2700:00:00
Tenable
www.tenable.com
13
0.044 Low
EPSS
Percentile
92.4%
The installed version of Advantech WebAccess is prior to 8.3.5 and is affected by the following vulnerabilities :
- Multiple command injection vulnerabilities, caused by a lack of proper validation of user-supplied data, may allow remote code execution. (CVE-2019-6552)
- Multiple stack-based buffer overflow vulnerabilities, caused by a lack of proper validation of the length of user-supplied data, may allow remote code execution. (CVE-2019-6550)
- An improper access control vulnerability may allow an attacker to cause a denial-of-service condition. (CVE-2019-6554)
Binary data 700723.prm| Vendor | Product | Version | CPE |
|---|---|---|---|
| advantech | advantech_webaccess | cpe:/a:advantech:advantech_webaccess |
Related
ics
ics
Advantech WebAccess/SCADA
2019-04-02 12:00:00
prion
prion
Stack overflow
2019-04-05 19:29:00
Command injection
2019-04-05 19:29:00
Improper access control
2019-04-05 19:29:00
zdi
zdi
cvelist
cvelist
checkpoint_advisories
checkpoint_advisories
Advantech WebAccess SCADA Buffer Overflow (CVE-2019-6550)
2019-11-25 00:00:00
Advantech WebAccess Buffer Overflow (CVE-2019-6550)
2020-02-02 00:00:00
Advantech WebAccess Denial of Service (CVE-2019-6554)
2019-11-25 00:00:00
nvd
nvd
cve
cve