Vulnerabilities > Advantech > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-01-25 CVE-2018-5443 SQL Injection vulnerability in Advantech Webaccess/Scada
A SQL Injection issue was discovered in Advantech WebAccess/SCADA versions prior to V8.2_20170817.
network
low complexity
advantech CWE-89
5.0
2018-01-12 CVE-2017-16736 Unrestricted Upload of File with Dangerous Type vulnerability in Advantech Webaccess
An Unrestricted Upload Of File With Dangerous Type issue was discovered in Advantech WebAccess versions prior to 8.3.
network
low complexity
advantech CWE-434
5.0
2018-01-12 CVE-2017-16732 Use After Free vulnerability in Advantech Webaccess
A use-after-free issue was discovered in Advantech WebAccess versions prior to 8.3.
network
low complexity
advantech CWE-416
6.4
2018-01-05 CVE-2017-16753 Improper Input Validation vulnerability in Advantech Webaccess
An Improper Input Validation issue was discovered in Advantech WebAccess versions prior to 8.3.
network
low complexity
advantech CWE-20
5.0
2018-01-05 CVE-2017-16728 NULL Pointer Dereference vulnerability in Advantech Webaccess
An Untrusted Pointer Dereference issue was discovered in Advantech WebAccess versions prior to 8.3.
network
low complexity
advantech CWE-476
5.0
2017-11-06 CVE-2017-14016 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Advantech Webaccess
A Stack-based Buffer Overflow issue was discovered in Advantech WebAccess versions prior to V8.2_20170817.
network
advantech CWE-119
6.8
2017-11-06 CVE-2017-12719 NULL Pointer Dereference vulnerability in Advantech Webaccess
An Untrusted Pointer Dereference issue was discovered in Advantech WebAccess versions prior to V8.2_20170817.
network
low complexity
advantech CWE-476
5.0
2017-10-25 CVE-2017-12705 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Advantech Webop
A Heap-Based Buffer Overflow issue was discovered in Advantech WebOP.
local
low complexity
advantech CWE-119
4.6
2017-08-30 CVE-2017-12717 Uncontrolled Search Path Element vulnerability in Advantech Webaccess
An Uncontrolled Search Path Element issue was discovered in Advantech WebAccess versions prior to V8.2_20170817.
network
advantech CWE-427
6.8
2017-08-30 CVE-2017-12713 Incorrect Permission Assignment for Critical Resource vulnerability in Advantech Webaccess
An Incorrect Permission Assignment for Critical Resource issue was discovered in Advantech WebAccess versions prior to V8.2_20170817.
local
low complexity
advantech CWE-732
4.6