CVE-2021-33000

EPSS 1.0%CWE-122

Parsing a maliciously crafted project file may cause a heap-based buffer overflow, which may allow an attacker to perform arbitrary code execution. User interaction is required on the WebAccess HMI Designer (versions 2.1.9.95 and prior).

Productos afectados

n/a · WebAccess HMI Designer

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://us-cert.cisa.gov/ics/advisories/icsa-21-173-01