Remote Code Execution Vulnerability in InduSoft Web Studio and InTouch Machine Edition

Remote Code Execution Vulnerability in InduSoft Web Studio and InTouch Machine Edition

CVE-2018-8840 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

A remote attacker could send a carefully crafted packet in InduSoft Web Studio v8.1 and prior versions, and/or InTouch Machine Edition 2017 v8.1 and prior versions during a tag, alarm, or event related action such as read and write, which may allow remote code execution.

Learn more about our Web App Pen Testing.