CVE-2020-16229

Summary

Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially crafted project files lacking proper validation of user supplied data may cause a type confusion condition, which may allow remote code execution, disclosure/modification of information, or cause the application to crash.

Affected Software

VendorProductVersion RangeStatus
n/aAdvantech WebAccess HMI DesignerVersions 2.1.9.31 and prioraffected

Weaknesses

  • CWE-843: ACCESS OF RESOURCE USING INCOMPATIBLE TYPE ('TYPE CONFUSION') CWE-843

ADP Enrichment

CVE Program Container

Additional References

References