CVE-2018-8837

Summary

Processing specially crafted .pm3 files in Advantech WebAccess HMI Designer 2.1.7.32 and prior may cause the system to write outside the intended buffer area and may allow remote code execution.

Affected Software

VendorProductVersion RangeStatus
ICS-CERTAdvantech WebAccess HMI DesignerAdvantech WebAccess HMI Designer, Version 2.1.7.32 and prior.affected

Weaknesses

  • CWE-787: OUT-OF-BOUNDS WRITE CWE-787

ADP Enrichment

CVE Program Container

Additional References

References