CVE-2017-12702

Summary

An Externally Controlled Format String issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. String format specifiers based on user provided input are not properly validated, which could allow an attacker to execute arbitrary code.

Affected Software

VendorProductVersion RangeStatus
n/aAdvantech WebAccessAdvantech WebAccessaffected

Weaknesses

  • CWE-134: CWE-134

ADP Enrichment

CVE Program Container

Additional References

References