CVE-2025-46268
MEDIUMAdvantech WebAccess/SCADA - SQL Injection
Title source: llmDescription
Advantech WebAccess/SCADA is vulnerable to SQL injection, which may allow an attacker to execute arbitrary SQL commands.
Scores
CVSS v3
6.3
EPSS
0.0004
EPSS Percentile
11.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Classification
CWE
CWE-89
Status
published
Affected Products (1)
advantech/webaccess\/scada
Timeline
Published
Dec 18, 2025
Tracked Since
Feb 18, 2026