CVE-2020-12019

9.8CRITICAL

Key Information:

Vendor: Advantech
Status: Webaccess Node
Vendor: CVE Published:; 15 June 2020

Summary

WebAccess Node Version 8.4.4 and prior is vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute arbitrary code.

Affected Version(s)

WebAccess Node Version 8.4.4 and prior

References

https://www.us-cert.gov/ics/advisories/icsa-20-161-01

x_refsource_MISC

EPSS Score

10% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 15, 2020
Vulnerability Reserved
Apr 21, 2020