Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
advantech vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2020-10638
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple heap-based buffer overflow vulnerabilities exist caused by a lack of proper validation of the length of user-supplied data, which may allow remote code execution.
Advantech Webaccess
Advantech Webaccess 9.0.0
6.8
CVSSv2
CVE-2018-15706
WADashboard API in Advantech WebAccess 8.3.1 and 8.3.2 allows remote authenticated malicious users to read any file on the filesystem due to a directory traversal vulnerability in the readFile API.
Advantech Webaccess 8.3.1
Advantech Webaccess 8.3.2
3.5
CVSSv2
CVE-2018-15707
Advantech WebAccess 8.3.1 and 8.3.2 are vulnerable to cross-site scripting in the Bwmainleft.asp page. An attacker could leverage this vulnerability to disclose credentials amongst other things.
Advantech Webaccess 8.3.1
Advantech Webaccess 8.3.2
1 EDB exploit
8.5
CVSSv2
CVE-2018-15705
WADashboard API in Advantech WebAccess 8.3.1 and 8.3.2 allows remote authenticated malicious users to write or overwrite any file on the filesystem due to a directory traversal vulnerability in the writeFile API. An attacker can use this vulnerability to remotely execute arbitrar...
Advantech Webaccess 8.3.1
Advantech Webaccess 8.3.2
1 EDB exploit
4.3
CVSSv2
CVE-2021-34540
Advantech WebAccess 8.4.2 and 8.4.4 allows XSS via the username column of the bwRoot.asp page of WADashboard.
Advantech Webaccess 8.4.2
Advantech Webaccess 8.4.4
10
CVSSv2
CVE-2015-7938
Advantech EKI-132x devices with firmware prior to 2015-12-31 allow remote malicious users to bypass authentication via unspecified vectors.
Advantech Eki-1321 Series Firmware
Advantech Eki-1322 Series Firmware
10
CVSSv2
CVE-2011-1914
Buffer overflow in the Advantech ADAM OLE for Process Control (OPC) Server ActiveX control in ADAM OPC Server prior to 3.01.012, Modbus RTU OPC Server prior to 3.01.010, and Modbus TCP OPC Server prior to 3.01.010 allows remote malicious users to execute arbitrary code via unspec...
Advantech Adam Opc Server
Advantech Modbus Rtu Opc Server
Advantech Modbus Tcp Opc Server
9
CVSSv2
CVE-2014-8387
cgi/utility.cgi in Advantech EKI-6340 2.05 Wi-Fi Mesh Access Point allows remote authenticated users to execute arbitrary commands via shell metacharacters in the pinghost parameter to ping.cgi.
Advantech Eki-6340 Firmware 2.05
Advantech Eki-6340 -
1 EDB exploit
10
CVSSv2
CVE-2011-0488
Stack-based buffer overflow in NTWebServer.exe in the test web service in InduSoft NTWebServer, as distributed in Advantech Studio 6.1 and InduSoft Web Studio 7.0, allows remote malicious users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a l...
Advantech Advantech Studio 6.1
Indusoft Web Studio 7.0
NA
CVE-2022-2135
The affected product is vulnerable to multiple SQL injections, which may allow an unauthorized malicious user to disclose information.
Advantech Iview
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »