Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
advantech vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2020-16215
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially crafted project files lacking proper validation of user supplied data may cause a stack-based buffer overflow, which may allow remote code execution, disclosure/modification of information, or cau...
Advantech Webaccess\\/hmi Designer
9.3
CVSSv2
CVE-2018-17910
WebAccess Versions 8.3.2 and prior. The application fails to properly validate the length of user-supplied data, causing a buffer overflow condition that allows for arbitrary remote code execution.
Advantech Webaccess
9.3
CVSSv2
CVE-2016-0858
Race condition in Advantech WebAccess prior to 8.1 allows remote malicious users to execute arbitrary code or cause a denial of service (buffer overflow) via a crafted request.
Advantech Webaccess
9.3
CVSSv2
CVE-2015-6467
Advantech WebAccess prior to 8.1 allows remote malicious users to execute arbitrary code via vectors involving a browser plugin.
Advantech Webaccess
9.3
CVSSv2
CVE-2011-0340
Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 301.1009.2904.0 in the ISSymbol virtual machine, as distributed in Advantech Studio 6.1 SP6 61.6.01.05, InduSoft Web Studio prior to 7.0+SP1, and InduSoft Thin Client 7.0, allow remote maliciou...
Indusoft Web Studio
Indusoft Web Studio 6.1
Indusoft Thin Client 7.0
Advantech Advantech Studio 6.1
1 EDB exploit
9
CVSSv2
CVE-2019-13558
In WebAccess versions 8.4.1 and prior, an exploit executed over the network may cause improper control of generation of code, which may allow remote code execution, data exfiltration, or cause a system crash.
Advantech Webaccess
9
CVSSv2
CVE-2019-13550
In WebAccess, versions 8.4.1 and prior, an improper authorization vulnerability may allow an malicious user to disclose sensitive information, cause improper control of generation of code, which may allow remote code execution or cause a system crash.
Advantech Webaccess
9
CVSSv2
CVE-2018-15704
Advantech WebAccess 8.3.2 and below is vulnerable to a stack buffer overflow vulnerability. A remote authenticated attacker could potentially exploit this vulnerability by sending a crafted HTTP request to broadweb/system/opcImg.asp.
Advantech Webaccess
9
CVSSv2
CVE-2014-8387
cgi/utility.cgi in Advantech EKI-6340 2.05 Wi-Fi Mesh Access Point allows remote authenticated users to execute arbitrary commands via shell metacharacters in the pinghost parameter to ping.cgi.
Advantech Eki-6340 Firmware 2.05
Advantech Eki-6340 -
1 EDB exploit
8.5
CVSSv2
CVE-2018-15705
WADashboard API in Advantech WebAccess 8.3.1 and 8.3.2 allows remote authenticated malicious users to write or overwrite any file on the filesystem due to a directory traversal vulnerability in the writeFile API. An attacker can use this vulnerability to remotely execute arbitrar...
Advantech Webaccess 8.3.1
Advantech Webaccess 8.3.2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »