Vulnerabilities > Advantech > Iview > 5.7
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-11 | CVE-2021-32932 | Unspecified vulnerability in Advantech Iview The affected product is vulnerable to a SQL injection, which may allow an unauthorized attacker to disclose information on the iView (versions prior to v5.7.03.6182). | 7.5 |
| 2021-02-11 | CVE-2021-22658 | SQL Injection vulnerability in Advantech Iview 5.6/5.7/5.7.02 Advantech iView versions prior to v5.7.03.6112 are vulnerable to a SQL injection, which may allow an attacker to escalate privileges to 'Administrator'. | 9.8 |
| 2021-02-11 | CVE-2021-22656 | Path Traversal vulnerability in Advantech Iview 5.6/5.7/5.7.02 Advantech iView versions prior to v5.7.03.6112 are vulnerable to directory traversal, which may allow an attacker to read sensitive files. | 7.5 |
| 2021-02-11 | CVE-2021-22654 | SQL Injection vulnerability in Advantech Iview 5.6/5.7/5.7.02 Advantech iView versions prior to v5.7.03.6112 are vulnerable to a SQL injection, which may allow an unauthorized attacker to disclose information. | 7.5 |
| 2021-02-11 | CVE-2021-22652 | Unspecified vulnerability in Advantech Iview 5.6/5.7/5.7.02 Access to the Advantech iView versions prior to v5.7.03.6112 configuration are missing authentication, which may allow an unauthorized attacker to change the configuration and obtain code execution. | 9.8 |
| 2020-08-25 | CVE-2020-16245 | Path Traversal vulnerability in Advantech Iview 5.6/5.7 Advantech iView, Versions 5.7 and prior. | 9.8 |