Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple heap-based buffer overflow vulnerabilities exist caused by a lack of proper validation of the length of user-supplied data, which may allow remote code execution.
[
{
"product": "Advantech WebAccess Node",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "WebAccess Node Version 8.4.4 and prior, WebAccess Node Version 9.0.0"
}
]
}
]
www.us-cert.gov/ics/advisories/icsa-20-128-01
www.zerodayinitiative.com/advisories/ZDI-20-593/
www.zerodayinitiative.com/advisories/ZDI-20-599/
www.zerodayinitiative.com/advisories/ZDI-20-600/
www.zerodayinitiative.com/advisories/ZDI-20-603/
www.zerodayinitiative.com/advisories/ZDI-20-616/
www.zerodayinitiative.com/advisories/ZDI-20-621/