Vulnerabilities > Advantech

DATE CVE VULNERABILITY TITLE RISK
2020-10-20 CVE-2020-25157 SQL Injection vulnerability in Advantech R-Seenet
The R-SeeNet webpage (1.5.1 through 2.4.10) suffers from SQL injection, which allows a remote attacker to invoke queries on the database and retrieve sensitive information.
network
low complexity
advantech CWE-89
5.0
5.0
2020-09-22 CVE-2020-16202 Incorrect Permission Assignment FOR Critical Resource vulnerability in Advantech Webaccess
WebAccess Node (All versions prior to 9.0.1) has incorrect permissions set for resources used by specific services, which may allow code execution with system privileges.
local
low complexity
advantech CWE-732
7.2
7.2
2020-08-25 CVE-2020-16245 Path Traversal vulnerability in Advantech Iview 5.6
Advantech iView, Versions 5.7 and prior.
network
low complexity
advantech CWE-22
7.5
7.5
2020-08-06 CVE-2020-16229 Type Confusion vulnerability in Advantech Webaccess/Hmi Designer 2.1/2.1.9.31
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior.
network
advantech CWE-843
6.8
6.8
2020-08-06 CVE-2020-16217 Double Free vulnerability in Advantech Webaccess/Hmi Designer 2.1/2.1.9.31
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior.
network
advantech CWE-415
6.8
6.8
2020-08-06 CVE-2020-16215 Out-Of-Bounds Write vulnerability in Advantech Webaccess/Hmi Designer 2.1/2.1.9.31
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior.
network
advantech CWE-787
6.8
6.8
2020-08-06 CVE-2020-16213 Out-Of-Bounds Write vulnerability in Advantech Webaccess/Hmi Designer 2.1/2.1.9.31
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior.
network
advantech CWE-787
6.8
6.8
2020-08-06 CVE-2020-16211 Out-Of-Bounds Read vulnerability in Advantech Webaccess/Hmi Designer 2.1/2.1.9.31
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior.
network
advantech CWE-125
4.3
4.3
2020-08-06 CVE-2020-16207 Out-Of-Bounds Write vulnerability in Advantech Webaccess/Hmi Designer 2.1/2.1.9.31
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior.
network
advantech CWE-787
6.8
6.8
2020-07-15 CVE-2020-14503 Improper Input Validation vulnerability in Advantech Iview 5.6
Advantech iView, versions 5.6 and prior, has an improper input validation vulnerability.
network
low complexity
advantech CWE-20
7.5
7.5