Webaccess@8.3.5 Security Vulnerabilities and Issues — Webaccess@8.3.5 CVE List

Lucene search

AdvantechWebaccess8.3.5

9 matches found

CVE•added 2019/06/28 9:15 p.m.•65 views

CVE-2019-10991

In WebAccess/SCADA, Versions 8.3.5 and prior, multiple stack-based buffer overflow vulnerabilities are caused by a lack of proper validation of the length of user-supplied data. Exploitation of these vulnerabilities may allow remote code execution.

9.8CVSS10AI score0.24592EPSS

CVE•added 2019/06/28 9:15 p.m.•63 views

CVE-2019-10993

In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference vulnerabilities may allow a remote attacker to execute arbitrary code.

9.8CVSS9.6AI score0.23916EPSS

CVE•added 2019/06/28 9:15 p.m.•61 views

CVE-2019-10983

In WebAccess/SCADA Versions 8.3.5 and prior, an out-of-bounds read vulnerability is caused by a lack of proper validation of user-supplied data. Exploitation of this vulnerability may allow disclosure of information.

7.5CVSS7.3AI score0.00478EPSS

CVE•added 2019/06/28 9:15 p.m.•61 views

CVE-2019-10985

In WebAccess/SCADA, Versions 8.3.5 and prior, a path traversal vulnerability is caused by a lack of proper validation of a user-supplied path prior to use in file operations. An attacker can leverage this vulnerability to delete files while posing as an administrator.

9.1CVSS9.1AI score0.03347EPSS

CVE•added 2019/06/28 9:15 p.m.•61 views

CVE-2019-10987

In WebAccess/SCADA Versions 8.3.5 and prior, multiple out-of-bounds write vulnerabilities are caused by a lack of proper validation of the length of user-supplied data. Exploitation of these vulnerabilities may allow remote code execution.

8.8CVSS9.2AI score0.02753EPSS

CVE•added 2019/06/28 9:15 p.m.•59 views

CVE-2019-10989

In WebAccess/SCADA Versions 8.3.5 and prior, multiple heap-based buffer overflow vulnerabilities are caused by a lack of proper validation of the length of user-supplied data. Exploitation of these vulnerabilities may allow remote code execution. Note: A different vulnerability than CVE-2019-10991.

9.8CVSS10AI score0.24592EPSS

CVE•added 2019/04/05 7:29 p.m.•58 views

CVE-2019-6550

Advantech WebAccess/SCADA, Versions 8.3.5 and prior. Multiple stack-based buffer overflow vulnerabilities, caused by a lack of proper validation of the length of user-supplied data, may allow remote code execution.

9.8CVSS9.8AI score0.03608EPSS

CVE•added 2019/04/05 7:29 p.m.•53 views

CVE-2019-6554

Advantech WebAccess/SCADA, Versions 8.3.5 and prior. An improper access control vulnerability may allow an attacker to cause a denial-of-service condition.

7.5CVSS7.3AI score0.00228EPSS

CVE•added 2019/04/05 7:29 p.m.•32 views

CVE-2019-6552

Advantech WebAccess/SCADA, Versions 8.3.5 and prior. Multiple command injection vulnerabilities, caused by a lack of proper validation of user-supplied data, may allow remote code execution.

9.8CVSS10AI score0.01621EPSS