Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / advantech

advantech

385 tracked vulnerabilities.

CVE-2025-58423 HIGH

Advantech DeviceOn iEdge <= 2.0.2 - Directory Traversal and DoS

CVE-2025-34247 MEDIUM

Advantech WebAccess/VPN < 1.1.5 - Authenticated SQL Injection via NetworksController Datatable Search

CVE-2025-34246 MEDIUM

Advantech WebAccess/VPN < 1.1.5 - Authenticated SQL Injection via AjaxPrevalidationController

CVE-2025-34245 MEDIUM

Advantech WebAccess/VPN < 1.1.5 - Authenticated SQL Injection via Datatable Search Parameters

CVE-2025-34244 MEDIUM

Advantech WebAccess/VPN < 1.1.5 - Authenticated SQL Injection via Datatable Search Parameters

CVE-2025-34243 MEDIUM

Advantech WebAccess/VPN < 1.1.5 - Authenticated SQL Injection via Datatable Search Parameters

CVE-2025-34242 MEDIUM

Advantech WebAccess/VPN < 1.1.5 - Authenticated SQL Injection via AjaxNetworkController Datatable Search

CVE-2025-34241 MEDIUM

Advantech WebAccess/VPN < 1.1.5 - Authenticated SQL Injection via AjaxDeviceController.ajaxDeviceAction

CVE-2025-34240 MEDIUM

Advantech WebAccess/VPN < 1.1.5 - Authenticated SQL Injection via AppManagementController.appUpgradeAction

CVE-2025-34239 HIGH

Advantech WebAccess/VPN < 1.1.5 - Authenticated OS Command Injection via AppManagementController.appUpgradeAction()

CVE-2025-34238 MEDIUM

Advantech WebAccess/VPN < 1.1.5 - Authenticated Path Traversal via AjaxStandaloneVpnClientsController

CVE-2025-34237 MEDIUM

Advantech WebAccess/VPN < 1.1.5 - Stored Cross-Site Scripting via StandaloneVpnClientsController

CVE-2025-34236 MEDIUM

Advantech WebAccess/VPN < 1.1.5 - Stored Cross-Site Scripting via NetworksController.addNetworkAction()

CVE-2025-53519 MEDIUM

Advantech iView <5.7.05 build 7057 - XSS

CVE-2025-53515 HIGH

Advantech iView - SQL Injection, RCE

CVE-2025-53509 MEDIUM

Advantech iView - Command Injection

CVE-2025-53475 HIGH

Advantech iView - SQL Injection, RCE

CVE-2025-53397 MEDIUM

Advantech iView <5.7.05 build 7057 - XSS

CVE-2025-52577 HIGH

Advantech iView < 5.7.05.7057 - SQLi & RCE via NetworkServlet.archiveTrapRange()

CVE-2025-52459 MEDIUM

Advantech iView - Command Injection

CVE-2025-48891 HIGH

Advantech iView < 5.7.05.7057 - Authenticated SQL Injection via CUtils.checkSQLInjection()

CVE-2025-46704 MEDIUM

Advantech iView < 5.7.05.7057 - Authenticated Path Traversal via NetworkServlet.processImportRequest()

CVE-2025-41442 MEDIUM

Advantech iView < 5.7.05.7057 - Reflected Cross-Site Scripting via Input Parameter Manipulation

CVE-2025-48470 MEDIUM

Advantech WISE-4000 Series LAN Firmware - Stored Cross-Site Scripting

CVE-2025-48469 CRITICAL

Advantech WISE-4000 LAN Firmware Update - Unauthenticated Firmware Upload

Previous Page 2 of 16 Next

Products

webaccess 103 advantech_webaccess 44 r-seenet 40 iview 37 webaccess\/scada 29 eki-6333ac-1gpo_firmware 20 eki-6333ac-2g_firmware 20 eki-6333ac-2gd_firmware 20 webaccess\/nms 20 WebAccess 15 webaccess\/hmi_designer 12 webaccess\/vpn 12 webaccess_scada 12 webaccess_dashboard 11 wise-deviceon_server 11 wise-4010lan_firmware 8 wise-4050lan_firmware 8 wise-4060lan_firmware 8 webaccess_hmi_designer 6 deviceon\/iedge 5 eki-1521_firmware 5 eki-1522_firmware 5 eki-1524_firmware 5 wise-paas\/rmm 5 adam-5630_firmware 3 advantech_studio 3 spectre_rt_ert351_firmware 3 susiaccess 3 WebAccess/SCADA 2 eki-1321_series_firmware 2

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy