CVE-2018-8833

High

Heap-based buffer overflow vulnerabilities in Advantech WebAccess HMI Designer 2.1.7.32 and prior caused by processing specially crafted…

icscert·CWE-122·Published 2018-04-25

CVSS

7.8

EPSS

0.02

KEV

Exploits

cve.orgen

180 chars

Heap-based buffer overflow vulnerabilities in Advantech WebAccess HMI Designer 2.1.7.32 and prior caused by processing specially crafted .pm3 files may allow remote code execution.

NVDen

180 chars

Heap-based buffer overflow vulnerabilities in Advantech WebAccess HMI Designer 2.1.7.32 and prior caused by processing specially crafted .pm3 files may allow remote code execution.

Vulnerabilidades de desbordamiento de búfer basado en memoria dinámica (heap) en Advantech WebAccess HMI Designer, en versiones 2.1.7.32 y anteriores, provocadas por el procesamiento de archivos .pm3 especialmente manipulados, podrían permitir la ejecución remota de código.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P
3.1	Primary	NVD	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H