Vulnerabilities > Advantech > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-10 | CVE-2021-22674 | Path Traversal vulnerability in Advantech Webaccess/Scada The affected product is vulnerable to a relative path traversal condition, which may allow an attacker access to unauthorized files and directories on the WebAccess/SCADA (WebAccess/SCADA versions prior to 8.4.5, WebAccess/SCADA versions prior to 9.0.1). | 4.0 |
| 2021-07-16 | CVE-2021-21799 | Cross-site Scripting vulnerability in Advantech R-Seenet 2.4.12 Cross-site scripting vulnerabilities exist in the telnet_form.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020). | 6.1 |
| 2021-07-16 | CVE-2021-21800 | Cross-site Scripting vulnerability in Advantech R-Seenet 2.4.12 Cross-site scripting vulnerabilities exist in the ssh_form.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020). | 6.1 |
| 2021-07-16 | CVE-2021-21801 | Cross-site Scripting vulnerability in Advantech R-Seenet 2.4.12 This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications. | 6.1 |
| 2021-07-16 | CVE-2021-21802 | Cross-site Scripting vulnerability in Advantech R-Seenet 2.4.12 This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications. | 6.1 |
| 2021-07-16 | CVE-2021-21803 | Cross-site Scripting vulnerability in Advantech R-Seenet 2.4.12 This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications. | 6.1 |
| 2021-06-24 | CVE-2021-33000 | Out-of-bounds Write vulnerability in Advantech Webaccess/Hmi Designer 2.1/2.1.9.31 Parsing a maliciously crafted project file may cause a heap-based buffer overflow, which may allow an attacker to perform arbitrary code execution. | 6.8 |
| 2021-06-24 | CVE-2021-33002 | Out-of-bounds Write vulnerability in Advantech Webaccess/Hmi Designer 2.1/2.1.9.31 Opening a maliciously crafted project file may cause an out-of-bounds write, which may allow an attacker to execute arbitrary code. | 6.8 |
| 2021-06-24 | CVE-2021-33004 | Out-of-bounds Write vulnerability in Advantech Webaccess/Hmi Designer 2.1/2.1.9.31/2.1.9.95 The affected product is vulnerable to memory corruption condition due to lack of proper validation of user supplied files, which may allow an attacker to execute arbitrary code. | 6.8 |
| 2021-06-18 | CVE-2021-32954 | Path Traversal vulnerability in Advantech Webaccess/Scada Advantech WebAccess/SCADA Versions 9.0.1 and prior is vulnerable to a directory traversal, which may allow an attacker to remotely read arbitrary files on the file system. | 6.8 |