Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
advantech vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-5642
Advantech R-SeeNet v2.4.23 allows an unauthenticated remote malicious user to read from and write to the snmpmon.ini file, which contains sensitive information.
Advantech R-seenet 2.4.23
9.8
CVSSv3
CVE-2023-1437
All versions before 9.1.4 of Advantech WebAccess/SCADA are vulnerable to use of untrusted pointers. The RPC arguments the client sent could contain raw memory pointers for the server to use as-is. This could allow an malicious user to gain access to the remote file system and the...
Advantech Webaccess\\/scada
9.8
CVSSv3
CVE-2023-2611
Advantech R-SeeNet versions 2.4.22 is installed with a hidden root-level user that is not available in the users list. This hidden user has a password that cannot be changed by users.
Advantech R-seenet
9.8
CVSSv3
CVE-2023-32540
In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file overwrite vulnerability, which could allow an malicious user to overwrite any file in the operating system (including system files), inject code into an XLS file, and modify the file extension, which could ...
Advantech Webaccess\\/scada
9.8
CVSSv3
CVE-2023-32628
In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file upload vulnerability that could allow an malicious user to modify the file extension of a certificate file to ASP when uploading it, which can lead to remote code execution.
Advantech Webaccess\\/scada
9.8
CVSSv3
CVE-2022-3385
Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An unauthorized attacker can remotely overflow the stack buffer and enable remote code execution.
Advantech R-seenet
1 Article
9.8
CVSSv3
CVE-2022-3386
Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An unauthorized attacker can use an outsized filename to overflow the stack buffer and enable remote code execution.
Advantech R-seenet
1 Article
9.8
CVSSv3
CVE-2022-2143
The affected product is vulnerable to two instances of command injection, which may allow an malicious user to remotely execute arbitrary code.
Advantech Iview
9.8
CVSSv3
CVE-2022-2139
The affected product is vulnerable to directory traversal, which may allow an malicious user to access unauthorized files and execute arbitrary code.
Advantech Iview
9.8
CVSSv3
CVE-2022-22987
The affected product has a hardcoded private key available inside the project folder, which may allow an malicious user to achieve Web Server login and perform further actions.
Advantech Adam-3600 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »