Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
advantech vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2012-0234
SQL injection vulnerability in Advantech/BroadWin WebAccess prior to 7.0 allows remote malicious users to execute arbitrary SQL commands via a malformed URL.
Advantech Advantech Webaccess
Advantech Advantech Webaccess 5.0
6.4
CVSSv2
CVE-2012-0237
Advantech/BroadWin WebAccess prior to 7.0 allows remote malicious users to (1) enable date and time syncing or (2) disable date and time syncing via a crafted URL.
Advantech Advantech Webaccess 5.0
Advantech Advantech Webaccess
7.5
CVSSv2
CVE-2011-4521
SQL injection vulnerability in Advantech/BroadWin WebAccess prior to 7.0 allows remote malicious users to execute arbitrary SQL commands via crafted string input.
Advantech Advantech Webaccess 5.0
Advantech Advantech Webaccess
4.3
CVSSv2
CVE-2011-4523
Cross-site scripting (XSS) vulnerability in bwview.asp in Advantech/BroadWin WebAccess prior to 7.0 allows remote malicious users to inject arbitrary web script or HTML via unspecified parameters.
Advantech Advantech Webaccess 5.0
Advantech Advantech Webaccess
10
CVSSv2
CVE-2011-4525
Advantech/BroadWin WebAccess prior to 7.0 allows remote malicious users to trigger the extraction of arbitrary web content into a batch file on a client system, and execute this batch file, via unspecified vectors.
Advantech Advantech Webaccess 5.0
Advantech Advantech Webaccess
10
CVSSv2
CVE-2011-4526
Buffer overflow in an ActiveX control in Advantech/BroadWin WebAccess prior to 7.0 might allow remote malicious users to execute arbitrary code via a long string value in unspecified parameters.
Advantech Advantech Webaccess 5.0
Advantech Advantech Webaccess
4.3
CVSSv2
CVE-2011-4522
Cross-site scripting (XSS) vulnerability in bwerrdn.asp in Advantech/BroadWin WebAccess prior to 7.0 allows remote malicious users to inject arbitrary web script or HTML via unspecified parameters.
Advantech Advantech Webaccess
Advantech Advantech Webaccess 5.0
10
CVSSv2
CVE-2015-6476
Advantech EKI-122x-BE devices with firmware prior to 1.65, EKI-132x devices with firmware prior to 1.98, and EKI-136x devices with firmware prior to 1.27 have hardcoded SSH keys, which makes it easier for remote malicious users to obtain access via an SSH session.
Advantech Eki-1322 Series Firmware
Advantech Eki-1321 Series Firmware
Advantech Eki-1361 Series Firmware
Advantech Eki-1362 Series Firmware
Advantech Eki-122x Series Firmware
7.5
CVSSv2
CVE-2018-8845
In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions before 8.3.1, and WebAccess/NMS 2.0.3 and prior, a heap-based buffer overflow vulnerability has been identi...
Advantech Webaccess
Advantech Webaccess Dashboard
Advantech Webaccess Scada
Advantech Webaccess\\/nms
4.6
CVSSv2
CVE-2018-8841
In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions before 8.3.1, and WebAccess/NMS 2.0.3 and prior, an improper privilege management vulnerability may allow a...
Advantech Webaccess
Advantech Webaccess Dashboard
Advantech Webaccess Scada
Advantech Webaccess\\/nms
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »