Vulnerabilities > Advantech > R Seenet > 2.4.12

DATE CVE VULNERABILITY TITLE RISK
2023-06-22 CVE-2023-2611 Use of Hard-coded Credentials vulnerability in Advantech R-Seenet
Advantech R-SeeNet versions 2.4.22 is installed with a hidden root-level user that is not available in the users list.
network
low complexity
advantech CWE-798
critical
 9.8
9.8
2023-06-22 CVE-2023-3256 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Advantech R-Seenet
Advantech R-SeeNet versions 2.4.22 allows low-level users to access and load the content of local files.
network
low complexity
advantech CWE-610
8.1
8.1
2022-10-27 CVE-2022-3385 Out-of-bounds Write vulnerability in Advantech R-Seenet
Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow.
network
low complexity
advantech CWE-787
critical
 9.8
9.8
2022-10-27 CVE-2022-3386 Out-of-bounds Write vulnerability in Advantech R-Seenet
Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow.
network
low complexity
advantech CWE-787
critical
 9.8
9.8
2022-10-27 CVE-2022-3387 Path Traversal vulnerability in Advantech R-Seenet
Advantech R-SeeNet Versions 2.4.19 and prior are vulnerable to path traversal attacks.
network
low complexity
advantech CWE-22
5.3
5.3
2021-08-05 CVE-2021-21805 OS Command Injection vulnerability in Advantech R-Seenet 2.4.12
An OS Command Injection vulnerability exists in the ping.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020).
network
low complexity
advantech CWE-78
critical
 9.8
9.8
2021-07-16 CVE-2021-21799 Cross-site Scripting vulnerability in Advantech R-Seenet 2.4.12
Cross-site scripting vulnerabilities exist in the telnet_form.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020).
network
low complexity
advantech CWE-79
6.1
6.1
2021-07-16 CVE-2021-21800 Cross-site Scripting vulnerability in Advantech R-Seenet 2.4.12
Cross-site scripting vulnerabilities exist in the ssh_form.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020).
network
low complexity
advantech CWE-79
6.1
6.1
2021-07-16 CVE-2021-21801 Cross-site Scripting vulnerability in Advantech R-Seenet 2.4.12
This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications.
network
low complexity
advantech CWE-79
6.1
6.1
2021-07-16 CVE-2021-21802 Cross-site Scripting vulnerability in Advantech R-Seenet 2.4.12
This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications.
network
low complexity
advantech CWE-79
6.1
6.1