The vulnerability of the VBWinExec function in the software for remote monitoring of Advantech WebAccess allows a hacker to execute arbitrary commands on the operating system.

The vulnerability of the VBWinExec function Node\AspVBObj.dll in the software for remote monitoring of Advantech WebAccess is related to the failure to take measures to neutralize special elements used in operating system commands. Exploiting this vulnerability allows a malicious actor to execute...