CVE-2018-8837

EPSS 2.1%CWE-787

Processing specially crafted .pm3 files in Advantech WebAccess HMI Designer 2.1.7.32 and prior may cause the system to write outside the intended buffer area and may allow remote code execution.

Affected products

ICS-CERT · Advantech WebAccess HMI Designer

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://ics-cert.us-cert.gov/advisories/ICSA-18-114-03 http://www.securityfocus.com/bid/103972