Advantech WebAccess/SCADA ICSA-19-092-01 Multiple Security Vulnerabilities
Advantech WebAccess/SCADA is prone to the following vulnerabilities:
1. Multiple command-injection vulnerabilities
2. A denial-of-service vulnerability
3. Multiple stack-based buffer-overflow vulnerabilities
An attacker can exploit these issues to inject and execute arbitrary commands in the context of the application. Failed exploit attempts will result in denial-of-service conditions.
Advantech WebAccess/SCADA version 8.3.5 and prior are vulnerable.