Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
advantech webaccess 8.1 vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2017-5152
An issue exists in Advantech WebAccess Version 8.1. By accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access pages unrestricted (AUTHENTICATION BYPASS).
Advantech Webaccess 8.1
9.8
CVSSv3
CVE-2017-5154
An issue exists in Advantech WebAccess Version 8.1. To be able to exploit the SQL injection vulnerability, an attacker must supply malformed input to the WebAccess software. Successful attack could result in administrative access to the application and its data files.
Advantech Webaccess 8.1
9.8
CVSSv3
CVE-2016-0856
Multiple stack-based buffer overflows in Advantech WebAccess prior to 8.1 allow remote malicious users to execute arbitrary code via unspecified vectors.
Advantech Webaccess
7.5
CVSSv3
CVE-2016-0853
Advantech WebAccess prior to 8.1 allows remote malicious users to obtain sensitive information via crafted input.
Advantech Webaccess
8.1
CVSSv3
CVE-2015-6467
Advantech WebAccess prior to 8.1 allows remote malicious users to execute arbitrary code via vectors involving a browser plugin.
Advantech Webaccess
7.5
CVSSv3
CVE-2016-0855
Directory traversal vulnerability in Advantech WebAccess prior to 8.1 allows remote malicious users to list arbitrary virtual-directory files via unspecified vectors.
Advantech Webaccess
9.8
CVSSv3
CVE-2016-0857
Multiple heap-based buffer overflows in Advantech WebAccess prior to 8.1 allow remote malicious users to execute arbitrary code via unspecified vectors.
Advantech Webaccess
5.3
CVSSv3
CVE-2015-3943
Advantech WebAccess prior to 8.1 allows remote malicious users to read sensitive cleartext information about e-mail project accounts via unspecified vectors.
Advantech Webaccess
1 Github repository
8.1
CVSSv3
CVE-2015-3947
SQL injection vulnerability in Advantech WebAccess prior to 8.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Advantech Webaccess
7.5
CVSSv3
CVE-2016-0851
Advantech WebAccess prior to 8.1 allows remote malicious users to cause a denial of service (out-of-bounds memory access) via unspecified vectors.
Advantech Webaccess
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »