Vulnerability Details CVE-2018-5443
A SQL Injection issue was discovered in Advantech WebAccess/SCADA versions prior to V8.2_20170817. WebAccess/SCADA does not properly sanitize its inputs for SQL commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 34.1%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
Products affected by CVE-2018-5443
-
cpe:2.3:a:advantech:webaccess/scada:-
-
cpe:2.3:a:advantech:webaccess/scada:7.2
-
cpe:2.3:a:advantech:webaccess/scada:8.0
-
cpe:2.3:a:advantech:webaccess/scada:8.1
-
cpe:2.3:a:advantech:webaccess/scada:8.2