54 matches found
CVE-2021-33000
Parsing a maliciously crafted project file may cause a heap-based buffer overflow, which may allow an attacker to perform arbitrary code execution. User interaction is required on the WebAccess HMI Designer versions 2.1.9.95 and prior...
CVE-2021-33002
Opening a maliciously crafted project file may cause an out-of-bounds write, which may allow an attacker to execute arbitrary code. User interaction is require on the WebAccess HMI Designer versions 2.1.9.95 and prior...
EUVD-2018-20441
Malware in sbrugna...
EUVD-2020-8177
Malware in sbrugna...
EUVD-2021-19721
Malware in sbrugna...
EUVD-2021-19723
Malware in sbrugna...
EUVD-2021-19725
Malware in sbrugna...
CVE-2021-33004
The affected product is vulnerable to memory corruption condition due to lack of proper validation of user supplied files, which may allow an attacker to execute arbitrary code. User interaction is required on the WebAccess HMI Designer versions 2.1.9.95 and prior...
CVE-2020-16213
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially crafted project files lacking proper validation of user supplied data may cause the system to write outside the intended buffer area, which may allow remote code execution, disclosure/modification of information, ...
Advantech WebAccess HMI Designer Resource Management Error Vulnerability
Advantech WebAccess HMI Designer is an integrated HMI development tool from Advantech, Taiwan, China. The product is equipped with features such as data transfer, menu editing and text editing. A resource management error vulnerability exists in Advantech WebAccess HMI Designer versions prior to...
CVE-2021-33000
Parsing a maliciously crafted project file may cause a heap-based buffer overflow, which may allow an attacker to perform arbitrary code execution. User interaction is required on the WebAccess HMI Designer versions 2.1.9.95 and prior...
CVE-2021-33002
Opening a maliciously crafted project file may cause an out-of-bounds write, which may allow an attacker to execute arbitrary code. User interaction is require on the WebAccess HMI Designer versions 2.1.9.95 and prior...
CVE-2021-33004
The affected product is vulnerable to memory corruption condition due to lack of proper validation of user supplied files, which may allow an attacker to execute arbitrary code. User interaction is required on the WebAccess HMI Designer versions 2.1.9.95 and prior...
CVE-2021-33000
Parsing a maliciously crafted project file may cause a heap-based buffer overflow, which may allow an attacker to perform arbitrary code execution. User interaction is required on the WebAccess HMI Designer versions 2.1.9.95 and prior...
CVE-2021-33002
Opening a maliciously crafted project file may cause an out-of-bounds write, which may allow an attacker to execute arbitrary code. User interaction is require on the WebAccess HMI Designer versions 2.1.9.95 and prior...
Heap overflow
Parsing a maliciously crafted project file may cause a heap-based buffer overflow, which may allow an attacker to perform arbitrary code execution. User interaction is required on the WebAccess HMI Designer versions 2.1.9.95 and prior...
Out-of-bounds
Opening a maliciously crafted project file may cause an out-of-bounds write, which may allow an attacker to execute arbitrary code. User interaction is require on the WebAccess HMI Designer versions 2.1.9.95 and prior...
Memory corruption
The affected product is vulnerable to memory corruption condition due to lack of proper validation of user supplied files, which may allow an attacker to execute arbitrary code. User interaction is required on the WebAccess HMI Designer versions 2.1.9.95 and prior...
CVE-2021-33002
Affected software: Advantech WebAccess HMI Designer. Vulnerability: CVE-2021-33002 — out-of-bounds write in PM3/file parsing, enabling arbitrary code execution when opening a malicious project file. Requires user interaction. Components/versions: WebAccess HMI Designer prior to 2.1.11.0 are affec...
CVE-2021-33002
Opening a maliciously crafted project file may cause an out-of-bounds write, which may allow an attacker to execute arbitrary code. User interaction is require on the WebAccess HMI Designer versions 2.1.9.95 and prior...