CVE-2020-16229

Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially crafted project files lacking proper validation of user supplied data may cause a type confusion condition, which may allow remote code execution, disclosure/modification of information, or cause the application to crash.
References
Link Resource
https://us-cert.cisa.gov/ics/advisories/icsa-20-219-02 Third Party Advisory US Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-20-954/ Third Party Advisory VDB Entry
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:advantech:webaccess\/hmi_designer:*:*:*:*:*:*:*:*

Information

Published : 2020-08-06 12:15

Updated : 2022-10-06 16:52


NVD link : CVE-2020-16229

Mitre link : CVE-2020-16229


JSON object : View

CWE
CWE-843

Access of Resource Using Incompatible Type ('Type Confusion')

Advertisement

dedicated server usa

Products Affected

advantech

  • webaccess\/hmi_designer