Externally Controlled Format String Vulnerability in Advantech WebAccess

Externally Controlled Format String Vulnerability in Advantech WebAccess

CVE-2017-12702 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

An Externally Controlled Format String issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. String format specifiers based on user provided input are not properly validated, which could allow an attacker to execute arbitrary code.

Learn more about our Web App Pen Testing.