CVE-2018-7497
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-7497
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, and WebAccess/NMS 2.0.3 and prior, several untrusted pointer dereference vulnerabilities have been identified, which may allow an attacker to execute arbitrary code.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
非可信指针解引用
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款Advantech产品安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Advantech WebAccess等都是研华(Advantech)公司的产品。Advantech WebAccess是一套基于浏览器架构的HMI/SCADA软件。该软件支持动态图形显示和实时数据控制,并提供远程控制和管理自动化设备的功能。WebAccess Dashboard是其中的一个仪表板组件;WebAccess Scada Node是其中的一个监控节点组件。WebAccess/NMS是一套用于网络管理系统(NMS)的网络浏览器基础套件。 多款Advantech产品中存在安全漏洞。攻击者可利用该漏
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2018-7497
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-7497
Please Login to view more intelligence information
- https://ics-cert.us-cert.gov/advisories/ICSA-18-135-01x_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2018-7497
Same Patch Batch · Advantech · 2018-05-15 · 11 CVEs total
| CVE-2018-10589 | 多款Advantech产品路径遍历漏洞 | |
| CVE-2018-10590 | 多款Advantech产品安全漏洞 | |
| CVE-2018-10591 | 多款Advantech产品安全漏洞 | |
| CVE-2018-7495 | 多款Advantech产品安全漏洞 | |
| CVE-2018-7499 | 多款Advantech产品缓冲区错误漏洞 | |
| CVE-2018-7501 | 多款Advantech产品SQL注入漏洞 | |
| CVE-2018-7503 | 多款Advantech产品路径遍历漏洞 | |
| CVE-2018-7505 | 多款Advantech产品权限许可和访问控制漏洞 | |
| CVE-2018-8841 | 多款Advantech产品安全漏洞 | |
| CVE-2018-8845 | 多款Advantech产品缓冲区错误漏洞 |
IV. Related Vulnerabilities
Same vendor: Advantech
Same weakness: CWE-822
- CVE-2025-47408
Untrusted Pointer Dereference in Power Optimization Firmware - CVE-2025-47405
Untrusted Pointer Dereference in Camera - CVE-2026-33114
Microsoft Word Remote Code Execution Vulnerability - CVE-2026-32077
Windows UPnP Device Host Elevation of Privilege Vulnerabilit - CVE-2026-27920
Windows UPnP Device Host Elevation of Privilege Vulnerabilit
V. Comments for CVE-2018-7497
No comments yet