You are here

Advantech WebAccess (Update A) (ICSA-18-004-02A) – Product Used in the Water and Wastewater and Energy Sectors - Updated January 11, 2018

Advantech WebAccess (Update A) (ICSA-18-004-02A) – Product Used in the Water and Wastewater and Energy Sectors - Updated January 11, 2018

Created: Friday, January 12, 2018 - 14:24
Categories:
Cybersecurity

January 11, 2018

ICS-CERT has updated this advisory with additional details about the vulnerability. ICS-CERT.

January 4, 2018

ICS-CERT has released an advisory on an Advantech WebAccess vulnerability. Versions of the product prior to 8.3 are affected. Successful exploitation of these vulnerabilities could cause the device to crash. An attacker may be able to further exploit this condition to remotely execute arbitrary code or bypass authentication. Advantech has released WebAccess Version 8.3 to address the reported vulnerabilities. ICS-CERT also recommends a series of defensive measures to minimize the risk of exploitation of this vulnerability. ICS-CERT.