Description
Advantech WebAccess/SCADA, Versions 8.3.5 and prior. Multiple command injection vulnerabilities, caused by a lack of proper validation of user-supplied data, may allow remote code execution.
Affected products
- Advantech / WebAccess/SCADAVersions 8.3.5 and prior. – Versions 8.3.5 and prior.
References
- VENDOR_ADVISORYhttps://ics-cert.us-cert.gov/advisories/ICSA-19-092-01