Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
advantech vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2008-5848
The Advantech ADAM-6000 module has 00000000 as its default password, which makes it easier for remote malicious users to obtain access through an HTTP session, and (1) monitor or (2) control the module's Modbus/TCP I/O activity.
Advantech Adam-6015
Advantech Adam-6022
Advantech Adam-6050w
Advantech Adam-6060
Advantech Adam-6050
Advantech Adam-6051
Advantech Adam-6024
Advantech Adam-6060w
Advantech Adam-6018
Advantech Adam-6501
Advantech Adam-6017
Advantech Adam-6051w
Advantech Adam-6066
Advantech Adam-6052
855
VMScore
CVE-2018-15705
WADashboard API in Advantech WebAccess 8.3.1 and 8.3.2 allows remote authenticated malicious users to write or overwrite any file on the filesystem due to a directory traversal vulnerability in the writeFile API. An attacker can use this vulnerability to remotely execute arbitrar...
Advantech Webaccess 8.3.1
Advantech Webaccess 8.3.2
1 EDB exploit
828
VMScore
CVE-2021-40397
A privilege escalation vulnerability exists in the installation of Advantech WISE-PaaS/OTA Server 3.0.9. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability.
Advantech Wise-paas\\/ota 3.0.9
828
VMScore
CVE-2020-16215
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially crafted project files lacking proper validation of user supplied data may cause a stack-based buffer overflow, which may allow remote code execution, disclosure/modification of information, or cau...
Advantech Webaccess\\/hmi Designer
828
VMScore
CVE-2018-17910
WebAccess Versions 8.3.2 and prior. The application fails to properly validate the length of user-supplied data, causing a buffer overflow condition that allows for arbitrary remote code execution.
Advantech Webaccess
828
VMScore
CVE-2015-6467
Advantech WebAccess prior to 8.1 allows remote malicious users to execute arbitrary code via vectors involving a browser plugin.
Advantech Webaccess
828
VMScore
CVE-2016-0858
Race condition in Advantech WebAccess prior to 8.1 allows remote malicious users to execute arbitrary code or cause a denial of service (buffer overflow) via a crafted request.
Advantech Webaccess
801
VMScore
CVE-2019-13558
In WebAccess versions 8.4.1 and prior, an exploit executed over the network may cause improper control of generation of code, which may allow remote code execution, data exfiltration, or cause a system crash.
Advantech Webaccess
801
VMScore
CVE-2019-13550
In WebAccess, versions 8.4.1 and prior, an improper authorization vulnerability may allow an malicious user to disclose sensitive information, cause improper control of generation of code, which may allow remote code execution or cause a system crash.
Advantech Webaccess
801
VMScore
CVE-2018-15704
Advantech WebAccess 8.3.2 and below is vulnerable to a stack buffer overflow vulnerability. A remote authenticated attacker could potentially exploit this vulnerability by sending a crafted HTTP request to broadweb/system/opcImg.asp.
Advantech Webaccess
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »