Original Issue Date: October 22, 2021
Severity Rating: HIGH
Systems Affected
Advantech Web Access versions 9.02 and prior
Overview
Multiple vulnerabilities have been reported in Advantech Web Access which could be exploited by a remote attacker to execute arbitrary code on the targeted system.
Description
These vulnerabilities exist in Advantech Web Access due to improper bound checking. A remote attacker could exploit these vulnerabilities by sending a specially-crafted request.
Successful exploitation of these vulnerabilities could allow a remote attacker to trigger buffer overflow and execute arbitrary code on the targeted system.
Solution
Apply appropriate steps as mentioned in the Advisory:
https://www.advantech.com/support/details/installation?id=1-MS9MJV