CVE-2019-10993
Severity CVSS v4.0:
Pending analysis
Type:
CWE-119
Buffer Errors
Publication date:
28/06/2019
Last modified:
18/04/2022
Description
In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference vulnerabilities may allow a remote attacker to execute arbitrary code.
Impact
Base Score 3.x
9.80
Severity 3.x
CRITICAL
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:advantech:webaccess:*:*:*:*:*:*:*:* | 8.3.5 (including) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://www.us-cert.gov/ics/advisories/icsa-19-178-05
- https://www.zerodayinitiative.com/advisories/ZDI-19-597/
- https://www.zerodayinitiative.com/advisories/ZDI-19-598/
- https://www.zerodayinitiative.com/advisories/ZDI-19-601/
- https://www.zerodayinitiative.com/advisories/ZDI-19-602/
- https://www.zerodayinitiative.com/advisories/ZDI-19-603/
- https://www.zerodayinitiative.com/advisories/ZDI-19-605/
- https://www.zerodayinitiative.com/advisories/ZDI-19-606/
- https://www.zerodayinitiative.com/advisories/ZDI-19-607/
- https://www.zerodayinitiative.com/advisories/ZDI-19-611/
- https://www.zerodayinitiative.com/advisories/ZDI-19-612/
- https://www.zerodayinitiative.com/advisories/ZDI-19-613/
- https://www.zerodayinitiative.com/advisories/ZDI-19-614/
- https://www.zerodayinitiative.com/advisories/ZDI-19-615/
- https://www.zerodayinitiative.com/advisories/ZDI-19-616/
- https://www.zerodayinitiative.com/advisories/ZDI-19-617/
- https://www.zerodayinitiative.com/advisories/ZDI-19-618/
- https://www.zerodayinitiative.com/advisories/ZDI-19-623/