Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
advantech vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2014-0990
Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote malicious users to execute arbitrary code via the UserName parameter.
Advantech Advantech Webaccess 7.2
6.8
CVSSv2
CVE-2014-0992
Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote malicious users to execute arbitrary code via the password parameter.
Advantech Advantech Webaccess 7.2
10
CVSSv2
CVE-2016-2275
The web interface on Advantech/B+B SmartWorx VESP211-EU devices with firmware 1.7.2 and VESP211-232 devices with firmware 1.5.1 and 1.7.2 relies on the client to implement access control, which allows remote malicious users to perform administrative actions via modified JavaScrip...
Advantech Vesp211-eu Firmware 1.7.2
Advantech Vesp211-232 Firmware 1.5.1
Advantech Vesp211-232 Firmware 1.7.2
7.5
CVSSv2
CVE-2020-10638
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple heap-based buffer overflow vulnerabilities exist caused by a lack of proper validation of the length of user-supplied data, which may allow remote code execution.
Advantech Webaccess
Advantech Webaccess 9.0.0
5.8
CVSSv2
CVE-2020-12010
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple relative path traversal vulnerabilities exist that may allow an authenticated user to use a specially crafted file to delete files outside the application’s control.
Advantech Webaccess
Advantech Webaccess 9.0.0
7.5
CVSSv2
CVE-2020-12002
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple stack-based buffer overflow vulnerabilities exist caused by a lack of proper validation of the length of user-supplied data, which may allow remote code execution.
Advantech Webaccess
Advantech Webaccess 9.0.0
7.5
CVSSv2
CVE-2020-12006
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple relative path traversal vulnerabilities exist that may allow a low privilege user to overwrite files outside the application’s control.
Advantech Webaccess
Advantech Webaccess 9.0.0
5
CVSSv2
CVE-2020-12014
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Input is not properly sanitized and may allow an malicious user to inject SQL commands.
Advantech Webaccess
Advantech Webaccess 9.0.0
5
CVSSv2
CVE-2020-12018
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An out-of-bounds vulnerability exists that may allow access to unauthorized data.
Advantech Webaccess
Advantech Webaccess 9.0.0
7.5
CVSSv2
CVE-2020-12022
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An improper validation vulnerability exists that could allow an malicious user to inject specially crafted input into memory where it can be executed.
Advantech Webaccess
Advantech Webaccess 9.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »