CVE-2018-8837

CVE-2018-8837

Vendor Ics-Cert
Product Advantech WebAccess HMI Designer
Weakness CWE-787
Published April 25, 2018
Last update September 16, 2024

CVSS base score

What the vulnerability does

01Description

Processing specially crafted .pm3 files in Advantech WebAccess HMI Designer 2.1.7.32 and prior may cause the system to write outside the intended buffer area and may allow remote code execution.

Key dates

02Disclosure timeline

April 25, 2018 CVE published
September 16, 2024 Record updated