Vulnerabilities > CVE-2021-22652 - Unspecified vulnerability in Advantech Iview 5.6/5.7/5.7.02
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Access to the Advantech iView versions prior to v5.7.03.6112 configuration are missing authentication, which may allow an unauthorized attacker to change the configuration and obtain code execution.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |
References
- http://packetstormsecurity.com/files/161937/Advantech-iView-Unauthenticated-Remote-Code-Execution.html
- http://packetstormsecurity.com/files/161937/Advantech-iView-Unauthenticated-Remote-Code-Execution.html
- https://us-cert.cisa.gov/ics/advisories/icsa-21-040-02
- https://us-cert.cisa.gov/ics/advisories/icsa-21-040-02