advantech

385 tracked vulnerabilities.

CVE-2020-14497 CRITICAL
Advantech iView < 5.6 - SQL Injection
Jul 15, 2020
CVSS 9.8
EPSS 0.02
CVE-2020-12019 CRITICAL
Advantech WebAccess < 8.4.4 - Remote Code Execution via Stack-based Buffer Overflow
Jun 15, 2020
CVSS 9.8
EPSS 0.01
CVE-2020-12026 HIGH
Advantech WebAccess < 8.4.4 and 9.0.0 - Path Traversal and Arbitrary File Write
May 08, 2020
CVSS 8.8
EPSS 0.02
CVE-2020-12022 CRITICAL
Advantech WebAccess < 8.4.4 and 9.0.0 - Remote Code Execution via Array Index Validation Bypass
May 08, 2020
CVSS 9.8
EPSS 0.00
CVE-2020-12018 HIGH
Advantech WebAccess < 8.4.4 - Out-of-bounds Read
May 08, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-12014 HIGH
Advantech WebAccess < 8.4.4 - SQL Injection
May 08, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-12010 HIGH
Advantech WebAccess < 8.4.4 and 9.0.0 - Authenticated Path Traversal via Specially Crafted File
May 08, 2020
CVSS 7.1
EPSS 0.01
CVE-2020-12006 CRITICAL
Advantech WebAccess < 8.4.4 - Authenticated Path Traversal and Arbitrary File Write
May 08, 2020
CVSS 9.8
EPSS 0.04
CVE-2020-12002 CRITICAL
Advantech WebAccess < 8.4.4 - Stack-based Buffer Overflow
May 08, 2020
CVSS 9.8
EPSS 0.31
CVE-2020-10638 CRITICAL
Advantech WebAccess Node <9.0.0 - RCE
May 08, 2020
CVSS 9.8
EPSS 0.27
CVE-2020-10631 CRITICAL
WebAccess/NMS <3.0.2 - Path Traversal
Apr 09, 2020
CVSS 9.8
EPSS 0.00
CVE-2020-10629 HIGH
WebAccess/NMS <3.0.2 - Info Disclosure
Apr 09, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-10625 CRITICAL
Advantech WebAccess/NMS < 3.0.2 - Unauthenticated Admin Account Creation
Apr 09, 2020
CVSS 9.8
EPSS 0.00
CVE-2020-10623 MEDIUM
WebAccess/NMS <3.0.2 - SQL Injection
Apr 09, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-10619 CRITICAL
WebAccess/NMS <3.0.2 - Path Traversal
Apr 09, 2020
CVSS 9.1
EPSS 0.02
CVE-2020-10617 HIGH
WebAccess/NMS <3.0.2 - SQL Injection
Apr 09, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-10603 HIGH
WebAccess/NMS <3.0.2 - Command Injection
Apr 09, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-10621 CRITICAL
WebAccess/NMS <3.0.2 - Code Injection
Apr 09, 2020
CVSS 9.8
EPSS 0.00
CVE-2020-10607 HIGH
Advantech WebAccess <8.4.2 - Buffer Overflow
Mar 27, 2020
CVSS 8.8
EPSS 0.01
CVE-2019-18235 CRITICAL
Advantech Spectre RT ERT351 Firmware <= 5.1.3 - Unauthenticated Brute-Force Login
Mar 17, 2021
CVSS 9.8
EPSS 0.00
CVE-2019-18233 MEDIUM
Advantech Spectre RT ERT351 Firmware < 5.1.3 - Reflected Cross-Site Scripting via Error Response
Mar 17, 2021
CVSS 6.1
EPSS 0.00
CVE-2019-18231 HIGH
Advantech Spectre RT ERT351 Firmware <= 5.1.3 - Cleartext Transmission of Sensitive Information
Mar 17, 2021
CVSS 7.5
EPSS 0.00
CVE-2019-3942 HIGH
Advantech WebAccess 8.3.4 - Unauthenticated Arbitrary File Read via RPC
Apr 01, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-18257 CRITICAL
Advantech DiagAnywhere < 3.07.11 - Unauthenticated Stack-based Buffer Overflow via File Transfer Service
Dec 17, 2019
CVSS 9.8
EPSS 0.01
CVE-2019-3951 CRITICAL
Advantech WebAccess < 8.4.3 - Unauthenticated Remote Code Execution via IOCTL 70533 RPC Message
Dec 12, 2019
CVSS 9.8
EPSS 0.10
Products
webaccess 103 advantech_webaccess 44 r-seenet 40 iview 37 webaccess\/scada 29 eki-6333ac-1gpo_firmware 20 eki-6333ac-2g_firmware 20 eki-6333ac-2gd_firmware 20 webaccess\/nms 20 WebAccess 15 webaccess\/hmi_designer 12 webaccess\/vpn 12 webaccess_scada 12 webaccess_dashboard 11 wise-deviceon_server 11 wise-4010lan_firmware 8 wise-4050lan_firmware 8 wise-4060lan_firmware 8 webaccess_hmi_designer 6 deviceon\/iedge 5 eki-1521_firmware 5 eki-1522_firmware 5 eki-1524_firmware 5 wise-paas\/rmm 5 adam-5630_firmware 3 advantech_studio 3 spectre_rt_ert351_firmware 3 susiaccess 3 WebAccess/SCADA 2 eki-1321_series_firmware 2
Quick Filters
Critical CVEs With Exploits In CISA KEV