CVE-2018-8835

Double free vulnerabilities in Advantech WebAccess HMI Designer 2.1.7.32 and prior caused by processing specially crafted .pm3 files may…

icscert·CWE-415·Published 2018-04-25

CVSS

—

EPSS

0.02

KEV

Exploits

cve.orgen

165 chars

Double free vulnerabilities in Advantech WebAccess HMI Designer 2.1.7.32 and prior caused by processing specially crafted .pm3 files may allow remote code execution.

NVDen

165 chars

Double free vulnerabilities in Advantech WebAccess HMI Designer 2.1.7.32 and prior caused by processing specially crafted .pm3 files may allow remote code execution.

NVDes

247 chars

Vulnerabilidades de doble liberación (double free) en Advantech WebAccess HMI Designer, en versiones 2.1.7.32 y anteriores, provocadas por el procesamiento de archivos .pm3 especialmente manipulados, podrían permitir la ejecución remota de código.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P
3.0	Primary	NVD	7.8	1.8	5.9	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H