Vulnerabilities > Advantech > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-08 | CVE-2023-2575 | Out-of-bounds Write vulnerability in Advantech products Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stack-based Buffer Overflow vulnerability, which can be triggered by authenticated users via a crafted POST request. | 8.8 |
| 2022-09-27 | CVE-2022-3323 | SQL Injection vulnerability in Advantech Iview 5.7.04.6469 An SQL injection vulnerability in Advantech iView 5.7.04.6469. | 7.5 |
| 2022-07-22 | CVE-2022-2135 | Unspecified vulnerability in Advantech Iview The affected product is vulnerable to multiple SQL injections, which may allow an unauthorized attacker to disclose information. | 7.5 |
| 2022-07-22 | CVE-2022-2138 | Unspecified vulnerability in Advantech Iview The affected product is vulnerable due to missing authentication, which may allow an attacker to read or modify sensitive data and execute arbitrary code, resulting in a denial-of-service condition. | 7.5 |
| 2022-01-28 | CVE-2021-40388 | Incorrect Default Permissions vulnerability in Advantech SQ Manager 1.0.6 A privilege escalation vulnerability exists in Advantech SQ Manager Server 1.0.6. | 8.8 |
| 2022-01-28 | CVE-2021-40389 | Incorrect Default Permissions vulnerability in Advantech Deviceon/Iedge 1.0.2 A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iEdge Server 1.0.2. | 8.8 |
| 2022-01-28 | CVE-2021-40396 | Incorrect Default Permissions vulnerability in Advantech Deviceon/Iservice 1.1.7 A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iService 1.1.7. | 8.8 |
| 2022-01-28 | CVE-2021-40397 | Incorrect Default Permissions vulnerability in Advantech Wise-Paas/Ota 3.0.9 A privilege escalation vulnerability exists in the installation of Advantech WISE-PaaS/OTA Server 3.0.9. | 7.8 |
| 2021-12-22 | CVE-2021-21910 | Incorrect Default Permissions vulnerability in Advantech R-Seenet 2.4.15 A privilege escalation vulnerability exists in the Windows version of installation for Advantech R-SeeNet Advantech R-SeeNet 2.4.15 (30.07.2021). | 7.8 |
| 2021-12-22 | CVE-2021-21911 | Improper Privilege Management vulnerability in Advantech R-Seenet 2.4.15 A privilege escalation vulnerability exists in the Windows version of installation for Advantech R-SeeNet Advantech R-SeeNet 2.4.15 (30.07.2021). | 7.8 |