CVE-2019-10993 Information

Feb 14, 2021 cve

Description

In WebAccess/SCADA Versions 8.3.5 and prior multiple untrusted pointer dereference vulnerabilities may allow a remote attacker to execute arbitrary code.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Reference

https://www.us-cert.gov/ics/advisories/icsa-19-178-05 https://www.zerodayinitiative.com/advisories/ZDI-19-597/ https://www.zerodayinitiative.com/advisories/ZDI-19-598/ https://www.zerodayinitiative.com/advisories/ZDI-19-601/ https://www.zerodayinitiative.com/advisories/ZDI-19-602/ https://www.zerodayinitiative.com/advisories/ZDI-19-603/ https://www.zerodayinitiative.com/advisories/ZDI-19-605/ https://www.zerodayinitiative.com/advisories/ZDI-19-606/ https://www.zerodayinitiative.com/advisories/ZDI-19-607/ https://www.zerodayinitiative.com/advisories/ZDI-19-611/ https://www.zerodayinitiative.com/advisories/ZDI-19-612/ https://www.zerodayinitiative.com/advisories/ZDI-19-613/ https://www.zerodayinitiative.com/advisories/ZDI-19-614/ https://www.zerodayinitiative.com/advisories/ZDI-19-615/ https://www.zerodayinitiative.com/advisories/ZDI-19-616/ https://www.zerodayinitiative.com/advisories/ZDI-19-617/ https://www.zerodayinitiative.com/advisories/ZDI-19-618/ https://www.zerodayinitiative.com/advisories/ZDI-19-623/

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

9.8

Share on: