cvelist/2020/12xxx/CVE-2020-12022.json

{
    "data_type": "CVE",
    "data_format": "MITRE",
    "data_version": "4.0",
    "CVE_data_meta": {
        "ID": "CVE-2020-12022",
        "ASSIGNER": "ics-cert@hq.dhs.gov",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "vendor_name": "n/a",
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Advantech WebAccess Node",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "WebAccess Node Version 8.4.4 and prior, WebAccess Node Version 9.0.0"
                                        }
                                    ]
                                }
                            }
                        ]
                    }
                }
            ]
        }
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "IMPROPER VALIDATION OF ARRAY INDEX CWE-129"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "refsource": "MISC",
                "name": "https://www.us-cert.gov/ics/advisories/icsa-20-128-01",
                "url": "https://www.us-cert.gov/ics/advisories/icsa-20-128-01"
            },
            {
                "refsource": "MISC",
                "name": "https://www.zerodayinitiative.com/advisories/ZDI-20-598/",
                "url": "https://www.zerodayinitiative.com/advisories/ZDI-20-598/"
            }
        ]
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An improper validation vulnerability exists that could allow an attacker to inject specially crafted input into memory where it can be executed."
            }
        ]
    }
}
"-Synchronized-Data." 2020-04-21 15:01:25 +00:00			`{`
			`"data_type": "CVE",`
			`"data_format": "MITRE",`
			`"data_version": "4.0",`
			`"CVE_data_meta": {`
			`"ID": "CVE-2020-12022",`
"-Synchronized-Data." 2020-05-08 12:01:25 +00:00			`"ASSIGNER": "ics-cert@hq.dhs.gov",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"vendor_name": "n/a",`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Advantech WebAccess Node",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "WebAccess Node Version 8.4.4 and prior, WebAccess Node Version 9.0.0"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "IMPROPER VALIDATION OF ARRAY INDEX CWE-129"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"refsource": "MISC",`
			`"name": "https://www.us-cert.gov/ics/advisories/icsa-20-128-01",`
			`"url": "https://www.us-cert.gov/ics/advisories/icsa-20-128-01"`
"-Synchronized-Data." 2020-05-08 21:01:14 +00:00			`},`
			`{`
			`"refsource": "MISC",`
			`"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-598/",`
			`"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-598/"`
"-Synchronized-Data." 2020-05-08 12:01:25 +00:00			`}`
			`]`
"-Synchronized-Data." 2020-04-21 15:01:25 +00:00			`},`
			`"description": {`
			`"description_data": [`
			`{`
			`"lang": "eng",`
"-Synchronized-Data." 2020-05-08 12:01:25 +00:00			`"value": "Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An improper validation vulnerability exists that could allow an attacker to inject specially crafted input into memory where it can be executed."`
"-Synchronized-Data." 2020-04-21 15:01:25 +00:00			`}`
			`]`
			`}`
			`}`