CyberSec.Space Logo
CVEブラウザに戻る

CVE-2012-0237

MEDIUM
6.4
CVSS Severity Score
EPSS Score0.1420%
EPSS Percentile33.44th
Published2012年2月21日
Last Modified2026年4月29日

Vulnerability Description

Advantech/BroadWin WebAccess before 7.0 allows remote attackers to (1) enable date and time syncing or (2) disable date and time syncing via a crafted URL.

Affected Platforms (CPE)

📦
Advantech

Advantech Webaccess

<= 6.0
📦
Advantech

Advantech Webaccess

= 5.0

References & Advisories

🔗 http://www.securityfocus.com/bid/52051
🔗 http://www.us-cert.gov/control_systems/pdf/ICSA-12-047-01.pdf
🔗 http://www.securityfocus.com/bid/52051
🔗 http://www.us-cert.gov/control_systems/pdf/ICSA-12-047-01.pdf

関連する脆弱性情報

CVE-2014-920810.0

Multiple stack-based buffer overflows in unspecified DLL files in Advantech WebAccess before 8.0.1 allow remote attackers to execu...

CVE-2017-127089.8

An Improper Restriction Of Operations Within The Bounds Of A Memory Buffer issue was discovered in Advantech WebAccess versions pr...

CVE-2017-126989.8

An Improper Authentication issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. Specially crafted requests...

CVE-2017-127069.8

A stack-based buffer overflow issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. Researchers have identi...