How severe is CVE-2017-12702?

CVE-2017-12702 has a CVSS v3 score of 8.8 (HIGH).

CVE-2017-12702

Name: webaccess
Author: advantech

8.8HIGH

An Externally Controlled Format String issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. String format specifiers based on user provided input are not properly validated, wh

Published: 8/30/2017Updated: 4/20/2025

Description

An Externally Controlled Format String issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. String format specifiers based on user provided input are not properly validated, which could allow an attacker to execute arbitrary code.

AI AnalysisPowered by AI

Affected Products

advantechwebaccess

References

http://www.securityfocus.com/bid/100526
Third Party AdvisoryVDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-17-241-02
Third Party AdvisoryUS Government Resource
http://www.securityfocus.com/bid/100526
Third Party AdvisoryVDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-17-241-02
Third Party AdvisoryUS Government Resource