Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webaccess vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-13558
In WebAccess versions 8.4.1 and prior, an exploit executed over the network may cause improper control of generation of code, which may allow remote code execution, data exfiltration, or cause a system crash.
Advantech Webaccess
4.9
CVSSv3
CVE-2016-5810
upAdminPg.asp in Advantech WebAccess prior to 8.1_20160519 allows remote authenticated administrators to obtain sensitive password information via unspecified vectors.
Advantech Webaccess
5.3
CVSSv3
CVE-2015-3943
Advantech WebAccess prior to 8.1 allows remote malicious users to read sensitive cleartext information about e-mail project accounts via unspecified vectors.
Advantech Webaccess
8.8
CVSSv3
CVE-2015-3946
Cross-site request forgery (CSRF) vulnerability in Advantech WebAccess prior to 8.1 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Advantech Webaccess
8.1
CVSSv3
CVE-2015-3947
SQL injection vulnerability in Advantech WebAccess prior to 8.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Advantech Webaccess
5.4
CVSSv3
CVE-2015-3948
Cross-site scripting (XSS) vulnerability in Advantech WebAccess prior to 8.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Advantech Webaccess
8.8
CVSSv3
CVE-2020-10607
In Advantech WebAccess, Versions 8.4.2 and prior. A stack-based buffer overflow vulnerability caused by a lack of proper validation of the length of user-supplied data may allow remote code execution.
Advantech Webaccess
9.8
CVSSv3
CVE-2017-16724
A Stack-based Buffer Overflow issue exists in Advantech WebAccess versions before 8.3. There are multiple instances of a vulnerability that allows too much data to be written to a location on the stack.
Advantech Webaccess
9.8
CVSSv3
CVE-2017-16720
A Path Traversal issue exists in WebAccess versions 8.3.2 and previous versions. An attacker has access to files within the directory structure of the target device.
Advantech Webaccess
1 EDB exploit
6.6
CVSSv3
CVE-2016-4525
Unspecified ActiveX controls in Advantech WebAccess prior to 8.1_20160519 allow remote authenticated users to obtain sensitive information or modify data via unknown vectors, related to the INTERFACESAFE_FOR_UNTRUSTED_CALLER (aka safe for scripting) flag.
Advantech Webaccess
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »