Webaccess Hmi Designer Security Vulnerabilities and Issues — Webaccess Hmi Designer CVE List

Lucene search

AdvantechWebaccess Hmi Designer

6 matches found

CVE•added 2019/08/02 5:15 p.m.•52 views

CVE-2019-10961

In Advantech WebAccess HMI Designer Version 2.1.9.23 and prior, processing specially crafted MCR files lacking proper validation of user supplied data may cause the system to write outside the intended buffer area, allowing remote code execution.

8.8CVSS9AI score0.00817EPSS

CVE•added 2018/04/25 11:29 p.m.•39 views

CVE-2018-8833

Heap-based buffer overflow vulnerabilities in Advantech WebAccess HMI Designer 2.1.7.32 and prior caused by processing specially crafted .pm3 files may allow remote code execution.

7.8CVSS8.2AI score0.00778EPSS

CVE•added 2018/04/25 11:29 p.m.•38 views

CVE-2018-8837

Processing specially crafted .pm3 files in Advantech WebAccess HMI Designer 2.1.7.32 and prior may cause the system to write outside the intended buffer area and may allow remote code execution.

7.8CVSS8AI score0.0035EPSS

CVE•added 2018/04/25 11:29 p.m.•35 views

CVE-2018-8835

Double free vulnerabilities in Advantech WebAccess HMI Designer 2.1.7.32 and prior caused by processing specially crafted .pm3 files may allow remote code execution.

7.8CVSS8AI score0.0035EPSS

CVE•added 2021/11/15 2:15 p.m.•28 views

CVE-2021-42706

This vulnerability could allow an attacker to disclose information and execute arbitrary code on affected installations of WebAccess/MHI Designer

7.8CVSS7.7AI score0.00051EPSS

CVE•added 2021/11/15 3:15 p.m.•27 views

CVE-2021-42703

This vulnerability could allow an attacker to send malicious Javascript code resulting in hijacking of the user’s cookie/session tokens, redirecting the user to a malicious webpage, and performing unintended browser action.

6.1CVSS6AI score0.00165EPSS