CyberSec.Space Logo
Back to CVE Browser

CVE-2012-0237

MEDIUM
6.4
CVSS Severity Score
EPSS Score0.1420%
EPSS Percentile33.44th
PublishedFeb 21, 2012
Last ModifiedApr 29, 2026

Vulnerability Description

Advantech/BroadWin WebAccess before 7.0 allows remote attackers to (1) enable date and time syncing or (2) disable date and time syncing via a crafted URL.

Affected Platforms (CPE)

πŸ“¦
Advantech

Advantech Webaccess

<= 6.0
πŸ“¦
Advantech

Advantech Webaccess

= 5.0

References & Advisories

πŸ”— http://www.securityfocus.com/bid/52051
πŸ”— http://www.us-cert.gov/control_systems/pdf/ICSA-12-047-01.pdf
πŸ”— http://www.securityfocus.com/bid/52051
πŸ”— http://www.us-cert.gov/control_systems/pdf/ICSA-12-047-01.pdf

Related Vulnerabilities

CVE-2014-920810.0

Multiple stack-based buffer overflows in unspecified DLL files in Advantech WebAccess before 8.0.1 allow remote attackers to execu...

CVE-2017-127089.8

An Improper Restriction Of Operations Within The Bounds Of A Memory Buffer issue was discovered in Advantech WebAccess versions pr...

CVE-2017-126989.8

An Improper Authentication issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. Specially crafted requests...

CVE-2017-127069.8

A stack-based buffer overflow issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. Researchers have identi...