You are here

advantech

Advantech WebAccess (ICSA-18-135-01) – Product Used in the Water and Wastewater and Energy Sectors

The NCCIC has released an advisory on vulnerabilities in Advantech WebAccess. Multiple versions of this product are affected. Successful exploitation of these vulnerabilities could allow an attacker to disclose sensitive information from the host and/or target, execute arbitrary code, or delete files. Advantech has released Version 8.3.1 of WebAccess to address the reported vulnerabilities. The NCCIC also recommends a series of defensive measures to minimize the risk of exploitation of these vulnerabilities.

Advantech WebAccess HMI Designer (ICSA-18-114-03) – Products Used in the Water and Wastewater and Energy Sectors

The NCCIC has released an advisory on vulnerabilities in Advantech WebAccess HMI Designer. Versions 2.1.7.32 and earlier are affected. Successful exploitation of these vulnerabilities may allow an attacker to remotely execute arbitrary code. The NCCIC is working with Advantech to provide mitigation steps to resolve the issues. In the meantime, the NCCIC recommends a series of defensive measures to minimize the risk of exploitation of these vulnerabilities. NCCIC/ICS-CERT.

Advantech WebAccess/SCADA (ICSA-18-023-01) - Product Used in the Water and Wastewater and Energy Sectors

ICS-CERT has released an advisory on an Advantech WebAccess/SCADA vulnerability. Versions prior to V8.2_20170817 are affected. Successful exploitation of these vulnerabilities could allow sensitive information to be disclosed from the target or database without authentication. Advantech has released version 8.3.0 of WebAccess/SCADA to address the reported vulnerabilities. ICS-CERT also recommends a series of defensive measures to minimize the risk of exploitation of this vulnerability.

Advantech WebAccess (ICSA-17-306-02) – Product Used in the Water and Wastewater and Energy Sectors

ICS-CERT has released an advisory on an Advantech WebAccess vulnerability. Versions of WebAccess prior to V8.2_20170817 are affected. Successful exploitation of these vulnerabilities may allow remote code execution. Advantech has released a new version of WebAccess to address the vulnerabilities. ICS-CERT.

Subscribe to advantech