CVE-2018-17916

CRITICAL

InduSoft Web Studio - Stack-based Buffer Overflow via Tag Alarm or Event Actions

Title source: llm

Description

InduSoft Web Studio versions prior to 8.1 SP2, and InTouch Edge HMI (formerly InTouch Machine Edition) versions prior to 2017 SP2. A remote attacker could send a carefully crafted packet to exploit a stack-based buffer overflow vulnerability during tag, alarm, or event related actions such as read and write, with potential for code to be executed. If InduSoft Web Studio remote communication security was not enabled, or a password was left blank, a remote user could send a carefully crafted packet to invoke an arbitrary process, with potential for code to be executed. The code would be executed under the privileges of the InduSoft Web Studio or InTouch Edge HMI runtime and could lead to a compromise of the InduSoft Web Studio or InTouch Edge HMI server machine.

References (2)

Core 2

Core References

Mitigation, Third Party Advisory, US Government Resource x_refsource_misc

https://ics-cert.us-cert.gov/advisories/ICSA-18-305-01

Exploit, Third Party Advisory x_refsource_misc

https://www.tenable.com/security/research/tra-2018-34

Scores

CVSS v3 9.8

EPSS 0.0373

EPSS Percentile 88.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-121 CWE-787

Status published

Products (6)

aveva/edge 8.1 (2 CPE variants)

aveva/indusoft_web_studio 6.1 sp5 (2 CPE variants)

aveva/indusoft_web_studio 7.1 (13 CPE variants)

aveva/indusoft_web_studio 8.0 (8 CPE variants)

aveva/indusoft_web_studio 8.1 (4 CPE variants)

aveva/intouch_machine_edition_2014 r2

Published Nov 02, 2018

Tracked Since Feb 18, 2026