A use-after-free issue exists in Advantech WebAccess versions before 8.3. WebAccess allows an unauthenticated malicious user to specify an arbitrary address.
advantech webaccess