CVE-2019-13558
CRITICALAdvantech WebAccess < 8.4.1 - Remote Code Execution
Title source: llmDescription
In WebAccess versions 8.4.1 and prior, an exploit executed over the network may cause improper control of generation of code, which may allow remote code execution, data exfiltration, or cause a system crash.
References (1)
Core 1
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://www.us-cert.gov/ics/advisories/icsa-19-260-01
Scores
CVSS v3
9.8
EPSS
0.0080
EPSS Percentile
74.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-94
Status
published
Products (1)
advantech/webaccess
< 8.4.1
Published
Sep 18, 2019
Tracked Since
Feb 18, 2026