Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple heap-based buffer overflow vulnerabilities exist caused by a lack of proper validation of the length of user-supplied data, which may allow remote code execution.
References
Link | Resource |
---|---|
https://www.us-cert.gov/ics/advisories/icsa-20-128-01 | Third Party Advisory US Government Resource |
https://www.zerodayinitiative.com/advisories/ZDI-20-593/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-20-599/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-20-600/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-20-603/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-20-616/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-20-621/ | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2020-05-08T11:49:32
Updated: 2020-05-08T20:06:29
Reserved: 2020-03-16T00:00:00
Link: CVE-2020-10638
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-05-08T12:15:11.067
Modified: 2021-12-17T16:57:07.227
Link: CVE-2020-10638
JSON object: View
Redhat Information
No data.