Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
advantech webaccess vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-32943
The affected product is vulnerable to a stack-based buffer overflow, which may allow an malicious user to remotely execute arbitrary code on the WebAccess/SCADA (WebAccess/SCADA versions before 8.4.5, WebAccess/SCADA versions before 9.0.1).
Advantech Webaccess\\/scada
7.5
CVSSv2
CVE-2020-12019
WebAccess Node Version 8.4.4 and prior is vulnerable to a stack-based buffer overflow, which may allow an malicious user to remotely execute arbitrary code.
Advantech Webaccess
7.5
CVSSv2
CVE-2020-12002
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple stack-based buffer overflow vulnerabilities exist caused by a lack of proper validation of the length of user-supplied data, which may allow remote code execution.
Advantech Webaccess
Advantech Webaccess 9.0.0
7.5
CVSSv2
CVE-2020-12006
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple relative path traversal vulnerabilities exist that may allow a low privilege user to overwrite files outside the application’s control.
Advantech Webaccess
Advantech Webaccess 9.0.0
7.5
CVSSv2
CVE-2020-12022
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An improper validation vulnerability exists that could allow an malicious user to inject specially crafted input into memory where it can be executed.
Advantech Webaccess
Advantech Webaccess 9.0.0
7.5
CVSSv2
CVE-2020-10638
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple heap-based buffer overflow vulnerabilities exist caused by a lack of proper validation of the length of user-supplied data, which may allow remote code execution.
Advantech Webaccess
Advantech Webaccess 9.0.0
7.5
CVSSv2
CVE-2020-10631
An attacker could use a specially crafted URL to delete or read files outside the WebAccess/NMS's (versions before 3.0.2) control.
Advantech Webaccess\\/nms
7.5
CVSSv2
CVE-2020-10625
WebAccess/NMS (versions before 3.0.2) allows an unauthenticated remote user to create a new admin account.
Advantech Webaccess\\/nms
7.5
CVSSv2
CVE-2019-3951
Advantech WebAccess prior to 8.4.3 allows unauthenticated remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) due to a stack-based buffer overflow when handling IOCTL 70533 RPC messages.
Advantech Webaccess
7.5
CVSSv2
CVE-2019-3975
Stack-based buffer overflow in Advantech WebAccess/SCADA 8.4.1 allows a remote, unauthenticated malicious user to execute arbitrary code via a crafted IOCTL 70603 RPC message.
Advantech Webaccess 8.4.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »