CVE-2018-10620 in InduSoft Web Studioinfo

Summary

AVEVA InduSoft Web Studio v8.1 and v8.1SP1, and InTouch Machine Edition v2017 8.1 and v2017 8.1 SP1 a remote user could send a carefully crafted packet to exploit a stack-based buffer overflow vulnerability during tag, alarm, or event related actions such as read and write, with potential for code to be executed.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

05/01/2018

Disclosure

07/19/2018

Moderation

VulDB entry created

Entries

1: VDB-121972

CPE

ready

CWE

CWE-119 (Confirmed)

CVSS

8.5

EPSS

0.05002

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2018-10620
NVD	https://nvd.nist.gov/vuln/detail/CVE-2018-10620
CVE Details	https://www.cvedetails.com/cve/CVE-2018-10620/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!