What the vulnerability does

01Description

An Externally Controlled Format String issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. String format specifiers based on user provided input are not properly validated, which could allow an attacker to execute arbitrary code.

Key dates

02Disclosure timeline

August 30, 2017 CVE published
August 5, 2024 Record updated