CVE-2017-16728

HIGH

Advantech WebAccess <8.3 - Memory Corruption

Title source: llm
STIX 2.1

Description

An Untrusted Pointer Dereference issue was discovered in Advantech WebAccess versions prior to 8.3. There are multiple vulnerabilities that may allow an attacker to cause the program to use an invalid memory address, resulting in a program crash.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/102424
Broken Link, Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-18-004-02

Scores

CVSS v3 7.5
EPSS 0.0212
EPSS Percentile 79.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-476 CWE-822
Status published
Products (1)
advantech/webaccess < 8.3
Published Jan 05, 2018
Tracked Since Feb 18, 2026