CVE-2021-42706 is a vulnerability in Advantech Webaccess Hmi Designer
Published on November 15, 2021

AzeoTech DAQFactory
This vulnerability could allow an attacker to disclose information and execute arbitrary code on affected installations of WebAccess/MHI Designer

NVD

Vulnerability Analysis

CVE-2021-42706 is exploitable with local system access, requires user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.

Attack Vector:

LOCAL

Attack Complexity:

LOW

Privileges Required:

NONE

User Interaction:

REQUIRED

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

HIGH

Availability Impact:

HIGH

Weakness Type

What is a Dangling pointer Vulnerability?

Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

CVE-2021-42706 has been classified to as a Dangling pointer vulnerability or weakness.

Products Associated with CVE-2021-42706

Want to know whenever a new CVE is published for Advantech Webaccess Hmi Designer? stack.watch will email you.

Advantech Webaccess Hmi Designer

Affected Versions

Advantech HMI Designer:

Version All versions, <= 2.1.11.0 is affected.

Exploit Probability

EPSS

0.05%

Percentile

15.53%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-42706 is a vulnerability in Advantech Webaccess Hmi DesignerPublished on November 15, 2021

Vulnerability Analysis

Weakness Type

What is a Dangling pointer Vulnerability?

Products Associated with CVE-2021-42706

Affected Versions

Exploit Probability

CVE-2021-42706 is a vulnerability in Advantech Webaccess Hmi Designer
Published on November 15, 2021