← Back

Advantech

advantech

378 CVEs • 95 products

Products (95)

Click to collapse
Toggle
Webaccess
webaccess
103 CVEs
Advantech Webaccess
advantech_webaccess
44 CVEs
R Seenet
r-seenet
40 CVEs
Iview
iview
37 CVEs
Webaccess/scada
webaccess/scada
29 CVEs
Webaccess/nms
webaccess/nms
20 CVEs
Eki 6333ac 2g Firmware
eki-6333ac-2g_firmware
20 CVEs
Eki 6333ac 2gd Firmware
eki-6333ac-2gd_firmware
20 CVEs
Eki 6333ac 1gpo Firmware
eki-6333ac-1gpo_firmware
20 CVEs
Webaccess Scada
webaccess_scada
12 CVEs
Webaccess/hmi Designer
webaccess/hmi_designer
12 CVEs
Webaccess/vpn
webaccess/vpn
12 CVEs
Webaccess Dashboard
webaccess_dashboard
11 CVEs
Wise Deviceon Server
wise-deviceon_server
11 CVEs
Wise 4060lan Firmware
wise-4060lan_firmware
8 CVEs
Wise 4050lan Firmware
wise-4050lan_firmware
8 CVEs
Wise 4010lan Firmware
wise-4010lan_firmware
8 CVEs
Webaccess Hmi Designer
webaccess_hmi_designer
6 CVEs
Wise Paas/rmm
wise-paas/rmm
5 CVEs
Deviceon/iedge
deviceon/iedge
5 CVEs
Eki 1521 Firmware
eki-1521_firmware
5 CVEs
Eki 1522 Firmware
eki-1522_firmware
5 CVEs
Eki 1524 Firmware
eki-1524_firmware
5 CVEs
Advantech Studio
advantech_studio
3 CVEs
Susiaccess
susiaccess
3 CVEs
Spectre Rt Ert351 Firmware
spectre_rt_ert351_firmware
3 CVEs
Adam 5630 Firmware
adam-5630_firmware
3 CVEs
Eki 1321 Series Firmware
eki-1321_series_firmware
2 CVEs
Eki 1322 Series Firmware
eki-1322_series_firmware
2 CVEs
Adam 5550 Firmware
adam_5550-firmware
2 CVEs
Adam 6015
adam-6015
1 CVE
Adam 6017
adam-6017
1 CVE
Adam 6018
adam-6018
1 CVE
Adam 6022
adam-6022
1 CVE
Adam 6024
adam-6024
1 CVE
Adam 6050
adam-6050
1 CVE
Adam 6050w
adam-6050w
1 CVE
Adam 6051
adam-6051
1 CVE
Adam 6051w
adam-6051w
1 CVE
Adam 6052
adam-6052
1 CVE
Adam 6060
adam-6060
1 CVE
Adam 6060w
adam-6060w
1 CVE
Adam 6066
adam-6066
1 CVE
Adam 6501
adam-6501
1 CVE
Adam Opc Server
adam_opc_server
1 CVE
Modbus Rtu Opc Server
modbus_rtu_opc_server
1 CVE
Modbus Tcp Opc Server
modbus_tcp_opc_server
1 CVE
Eki 6340 Firmware
eki-6340_firmware
1 CVE
Eki 6340
eki-6340
1 CVE
Adamview
adamview
1 CVE
Eki 1200 Gateway Series Firmware
eki-1200_gateway_series_firmware
1 CVE
Eki 1361 Series Firmware
eki-1361_series_firmware
1 CVE
Eki 1362 Series Firmware
eki-1362_series_firmware
1 CVE
Eki 122x Series Firmware
eki-122x_series_firmware
1 CVE
Vesp211 Eu Firmware
vesp211-eu_firmware
1 CVE
Vesp211 232 Firmware
vesp211-232_firmware
1 CVE
Webop
webop
1 CVE
Diaganywhere
diaganywhere
1 CVE
Bb Eswgp506 2sfp T Firmware
bb-eswgp506-2sfp-t_firmware
1 CVE
Sq Manager
sq_manager
1 CVE
Deviceon/iservice
deviceon/iservice
1 CVE
Wise Paas/ota
wise-paas/ota
1 CVE
Adam 3600 Firmware
adam-3600_firmware
1 CVE
Tp 3250 Firmware
tp_3250_firmware
1 CVE
Iot Edge Linux Docker
iot_edge_linux_docker
1 CVE
Iot Edge Windows
iot_edge_windows
1 CVE
Iotsuite Growth Linux Docker
iotsuite_growth_linux_docker
1 CVE
Iotsuite Saas Composer
iotsuite_saas_composer
1 CVE
Iotsuite Starter Linux Docker
iotsuite_starter_linux_docker
1 CVE
Eki 1221
eki-1221
0 CVEs
Eki 1221d
eki-1221d
0 CVEs
Eki 1222
eki-1222
0 CVEs
Eki 1222d
eki-1222d
0 CVEs
Eki 1224
eki-1224
0 CVEs
Eki 1321
eki-1321
0 CVEs
Eki 1322
eki-1322
0 CVEs
Eki 1361
eki-1361
0 CVEs
Eki 1362
eki-1362
0 CVEs
Vesp211 Eu
vesp211-eu
0 CVEs
Vesp211 232
vesp211-232
0 CVEs
Bb Eswgp506 2sfp T
bb-eswgp506-2sfp-t
0 CVEs
Spectre Rt Ert351
spectre_rt_ert351
0 CVEs
Adam 3600
adam-3600
0 CVEs
Eki 1521
eki-1521
0 CVEs
Eki 1522
eki-1522
0 CVEs
Eki 1524
eki-1524
0 CVEs
Adam 5630
adam-5630
0 CVEs
Adam 5550
adam-5550
0 CVEs
Eki 6333ac 2g
eki-6333ac-2g
0 CVEs
Eki 6333ac 2gd
eki-6333ac-2gd
0 CVEs
Eki 6333ac 1gpo
eki-6333ac-1gpo
0 CVEs
Wise 4060lan
wise-4060lan
0 CVEs
Wise 4050lan
wise-4050lan
0 CVEs
Wise 4010lan
wise-4010lan
0 CVEs
Tp 3250
tp_3250
0 CVEs

CVEs (378)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-22654
1Advantech
1Iview
Nov 21, 2024
Feb 11, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Advantech iView versions prior to v5.7.03.6112 are vulnerable to a SQL injection, which may allow an unauthorized attacker to disclose information.
CVE-2021-22652
1Advantech
1Iview
Nov 21, 2024
Feb 11, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Access to the Advantech iView versions prior to v5.7.03.6112 configuration are missing authentication, which may allow an unauthorized attacker to change the configuration and obtain code execution.
CVE-2020-25157
1Advantech
1R Seenet
Nov 21, 2024
Oct 20, 2020
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
The R-SeeNet webpage (1.5.1 through 2.4.10) suffers from SQL injection, which allows a remote attacker to invoke queries on the database and retrieve sensitive information.
CVE-2020-16202
1Advantech
1Webaccess
Nov 21, 2024
Sep 22, 2020
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
WebAccess Node (All versions prior to 9.0.1) has incorrect permissions set for resources used by specific services, which may allow code execution with system privileges.
CVE-2020-16245
1Advantech
1Iview
Nov 21, 2024
Aug 25, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Advantech iView, Versions 5.7 and prior. The affected product is vulnerable to path traversal vulnerabilities that could allow an attacker to create/download arbitrary files, limit system availability, and remotely execu...Show more
Advantech iView, Versions 5.7 and prior. The affected product is vulnerable to path traversal vulnerabilities that could allow an attacker to create/download arbitrary files, limit system availability, and remotely execute code.Show less
CVE-2020-16229
1Advantech
1Webaccess/hmi Designer
Nov 21, 2024
Aug 6, 2020
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially crafted project files lacking proper validation of user supplied data may cause a type confusion condition, which may allow remote code...Show more
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially crafted project files lacking proper validation of user supplied data may cause a type confusion condition, which may allow remote code execution, disclosure/modification of information, or cause the application to crash.Show less
CVE-2020-16217
1Advantech
1Webaccess/hmi Designer
Nov 21, 2024
Aug 6, 2020
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. A double free vulnerability caused by processing specially crafted project files may allow remote code execution, disclosure/modification of information, or...Show more
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. A double free vulnerability caused by processing specially crafted project files may allow remote code execution, disclosure/modification of information, or cause the application to crash.Show less
CVE-2020-16215
1Advantech
1Webaccess/hmi Designer
Nov 21, 2024
Aug 6, 2020
N/A· v4
7.8 HIGH· v3
9.3 HIGH· v2
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially crafted project files lacking proper validation of user supplied data may cause a stack-based buffer overflow, which may allow remote co...Show more
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially crafted project files lacking proper validation of user supplied data may cause a stack-based buffer overflow, which may allow remote code execution, disclosure/modification of information, or cause the application to crash.Show less
CVE-2020-16213
1Advantech
1Webaccess/hmi Designer
Nov 21, 2024
Aug 6, 2020
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially crafted project files lacking proper validation of user supplied data may cause the system to write outside the intended buffer area, wh...Show more
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially crafted project files lacking proper validation of user supplied data may cause the system to write outside the intended buffer area, which may allow remote code execution, disclosure/modification of information, or cause the application to crash.Show less
CVE-2020-16211
1Advantech
1Webaccess/hmi Designer
Nov 21, 2024
Aug 6, 2020
N/A· v4
5.5 MEDIUM· v3
4.3 MEDIUM· v2
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. An out-of-bounds read vulnerability may be exploited by processing specially crafted project files, which may allow an attacker to read information.
CVE-2020-16207
1Advantech
1Webaccess/hmi Designer
Nov 21, 2024
Aug 6, 2020
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Multiple heap-based buffer overflow vulnerabilities may be exploited by opening specially crafted project files that may overflow the heap, which may allow r...Show more
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Multiple heap-based buffer overflow vulnerabilities may be exploited by opening specially crafted project files that may overflow the heap, which may allow remote code execution, disclosure/modification of information, or cause the application to crash.Show less
CVE-2020-14503
1Advantech
1Iview
Nov 21, 2024
Jul 15, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Advantech iView, versions 5.6 and prior, has an improper input validation vulnerability. Successful exploitation of this vulnerability could allow an attacker to remotely execute arbitrary code.
CVE-2020-14501
1Advantech
1Iview
Nov 21, 2024
Jul 15, 2020
N/A· v4
9.8 CRITICAL· v3
5.0 MEDIUM· v2
Advantech iView, versions 5.6 and prior, has an improper authentication for critical function (CWE-306) issue. Successful exploitation of this vulnerability may allow an attacker to obtain the information of the user tab...Show more
Advantech iView, versions 5.6 and prior, has an improper authentication for critical function (CWE-306) issue. Successful exploitation of this vulnerability may allow an attacker to obtain the information of the user table, including the administrator credentials in plain text. An attacker may also delete the administrator account.Show less
CVE-2020-14499
1Advantech
1Iview
Nov 21, 2024
Jul 15, 2020
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Advantech iView, versions 5.6 and prior, has an improper access control vulnerability. Successful exploitation of this vulnerability may allow an attacker to obtain all user accounts credentials.
CVE-2020-14507
1Advantech
1Iview
Nov 21, 2024
Jul 15, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Advantech iView, versions 5.6 and prior, is vulnerable to multiple path traversal vulnerabilities that could allow an attacker to create/download arbitrary files, limit system availability, and remotely execute code.
CVE-2020-14505
1Advantech
1Iview
Nov 21, 2024
Jul 15, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Advantech iView, versions 5.6 and prior, has an improper neutralization of special elements used in a command (“command injection”) vulnerability. Successful exploitation of this vulnerability may allow an attacker to se...Show more
Advantech iView, versions 5.6 and prior, has an improper neutralization of special elements used in a command (“command injection”) vulnerability. Successful exploitation of this vulnerability may allow an attacker to send a HTTP GET or POST request that creates a command string without any validation. The attacker may then remotely execute code.Show less
CVE-2020-14497
1Advantech
1Iview
Nov 21, 2024
Jul 15, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Advantech iView, versions 5.6 and prior, contains multiple SQL injection vulnerabilities that are vulnerable to the use of an attacker-controlled string in the construction of SQL queries. An attacker could extract user...Show more
Advantech iView, versions 5.6 and prior, contains multiple SQL injection vulnerabilities that are vulnerable to the use of an attacker-controlled string in the construction of SQL queries. An attacker could extract user credentials, read or modify information, and remotely execute code.Show less
CVE-2020-12019
1Advantech
1Webaccess
Nov 21, 2024
Jun 15, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
WebAccess Node Version 8.4.4 and prior is vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute arbitrary code.
CVE-2020-12026
1Advantech
1Webaccess
Nov 21, 2024
May 8, 2020
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple relative path traversal vulnerabilities exist that may allow a low privilege user to overwrite files outside the application’s control.
CVE-2020-12022
1Advantech
1Webaccess
Nov 21, 2024
May 8, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An improper validation vulnerability exists that could allow an attacker to inject specially crafted input into memory where it can be executed.