CVE-2018-7497

In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, and WebAccess/NMS 2.0.3 and prior, several untrusted pointer dereference vulnerabilities have been identified, which may allow an attacker to execute arbitrary code.
References
Link Resource
http://www.securityfocus.com/bid/104190 Third Party Advisory VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-18-135-01 Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/104190 Third Party Advisory VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-18-135-01 Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

cpe:2.3:a:advantech:webaccess:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:advantech:webaccess:*:*:*:*:*:*:*:*

Configuration 3 (hide)

cpe:2.3:a:advantech:webaccess_dashboard:*:*:*:*:*:*:*:*

Configuration 4 (hide)

cpe:2.3:a:advantech:webaccess_scada:*:*:*:*:*:*:*:*

Configuration 5 (hide)

cpe:2.3:a:advantech:webaccess\/nms:*:*:*:*:*:*:*:*

History

21 Nov 2024, 04:12

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/104190 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/104190 - Third Party Advisory, VDB Entry
References () https://ics-cert.us-cert.gov/advisories/ICSA-18-135-01 - US Government Resource, Third Party Advisory () https://ics-cert.us-cert.gov/advisories/ICSA-18-135-01 - Third Party Advisory, US Government Resource

Information

Published : 2018-05-15 22:29

Updated : 2024-11-21 04:12


NVD link : CVE-2018-7497

Mitre link : CVE-2018-7497

CVE.ORG link : CVE-2018-7497


JSON object : View

Products Affected

advantech

  • webaccess\/nms
  • webaccess_scada
  • webaccess
  • webaccess_dashboard
CWE
CWE-822

Untrusted Pointer Dereference

CWE-476

NULL Pointer Dereference