Advantech Vulnerabilidad

Cronología

Escribe

SCADA Software	200
Not Defined	94
Router Operating System	1

Producto

Advantech WebAccess	163
Advantech R-SeeNet	39
Advantech SCADA	29
Advantech iView	22
Advantech WebAccess HMI Designer	14

Contramedidas

Official Fix	156
Temporary Fix	0
Workaround	1
Unavailable	0
Not Defined	138

Explotabilidad

High	5
Functional	0
Proof-of-Concept	11
Unproven	0
Not Defined	279

Vector de acceso

Not Defined	0
Physical	0
Local	25
Adjacent	11
Network	259

Autenticación

Not Defined	0
High	4
Low	108
None	183

La interacción del usuario

Not Defined	0
Required	47
None	248

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	8
≤5	14
≤6	33
≤7	75
≤8	75
≤9	68
≤10	22

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	8
≤5	14
≤6	60
≤7	68
≤8	63
≤9	62
≤10	20

VulDB

≤1	0
≤2	0
≤3	0
≤4	18
≤5	20
≤6	49
≤7	58
≤8	111
≤9	17
≤10	22

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	10
≤7	14
≤8	62
≤9	22
≤10	61

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	2
≤7	4
≤8	5
≤9	9
≤10	8

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	26
<2k	127
<5k	142
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar hoy

<1k	270
<2k	20
<5k	5
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Products (42): ADAM-3600 (1), Adam-6501 (1), AdamView (1), Advantech Studio (1), BB-ESWGP506-2SFP-T (1), DeviceOn (2), DiagAnywhere Server (1), EKI-122x-BE (1), EKI-132x (1), EKI-136x (1), EKI-1200 Gateway (1), EKI-1521 (5), EKI-1522 (5), EKI-1524 (5), EKI-6340 (1), HMI Designer (4), MESR901 (1), Modbus RTU OPC Server (1), NMS (9), OTA Server (1), R-SeeNet (39), RMM (4), SCADA (29), SQ Manager Server (1), SUISAccess Server (3), Spectre RT ERT351 (2), Spectre RT Industrial Routers ERT351 (1), VESP211-232 (1), VESP211-EU (1), WISE-PaaS (5), WISE-PaaS RMM (1), WebAccess (163), WebAccess Dashboard (11), WebAccess HMI Designer (14), WebAccess Node (10), WebAccess SCADA (10), WebAccess Scada Node (11), WebAccss (3), WebOP (1), iEdge Server (1), iService (1), iView (22)

Link to Vendor Website: https://www.advantech.com/

Fecha de publicación	Base	Temp	Vulnerabilidad	Prod	Exp	Con	EPSS	CTI	CVE
2024-03-21	6.3	6.2	Advantech WebAccess/SCADA sql injection	SCADA Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-2453
2023-10-18	8.5	8.5	Advantech R-SeeNet snmpmon.ini divulgación de información	Desconocido	Not Defined	Not Defined	0.00445	0.00	CVE-2023-5642
2023-10-17	6.1	6.1	Advantech WebAccess Credentials divulgación de información	SCADA Software	Not Defined	Not Defined	0.00094	0.04	CVE-2023-4215
2023-08-08	6.0	6.0	Advantech EKI-1524/EKI-1522/EKI-1521 Web Interface cross site scripting	Desconocido	Not Defined	Not Defined	0.00053	0.00	CVE-2023-4203
2023-08-08	6.0	6.0	Advantech EKI-1524/EKI-1522/EKI-1521 Web Interface cross site scripting	Desconocido	Not Defined	Not Defined	0.00053	0.00	CVE-2023-4202
2023-07-31	6.9	6.8	Advantech iView checkSQLInjection sql injection	Desconocido	Not Defined	Official Fix	0.00084	0.00	CVE-2023-3983
2023-06-22	7.7	7.7	Advantech R-SeeNet escalada de privilegios	Desconocido	Not Defined	Not Defined	0.00416	0.00	CVE-2023-3256
2023-06-22	9.8	9.6	Advantech R-SeeNet autenticación débil	Desconocido	Not Defined	Not Defined	0.00301	0.00	CVE-2023-2611
2023-06-16	9.8	9.4	Advantech WebAccess/SCADA RPC desbordamiento de búfer	SCADA Software	Not Defined	Official Fix	0.00089	0.02	CVE-2023-1437
2023-06-01	7.2	6.9	Advantech WebAccss/SCADA Certificate File escalada de privilegios	SCADA Software	Not Defined	Official Fix	0.00166	0.00	CVE-2023-32628
2023-06-01	7.2	7.0	Advantech WebAccss/SCADA escalada de privilegios	SCADA Software	Not Defined	Official Fix	0.00107	0.04	CVE-2023-22450
2023-06-01	8.1	8.0	Advantech WebAccss/SCADA escalada de privilegios	SCADA Software	Not Defined	Official Fix	0.00115	0.00	CVE-2023-32540
2023-05-30	7.5	7.4	Advantech WebAccess/SCADA ZIP File Local Privilege Escalation	SCADA Software	Not Defined	Official Fix	0.00054	0.02	CVE-2023-2866
2023-05-08	8.8	8.8	Advantech EKI-1524/EKI-1522/EKI-1521 POST desbordamiento de búfer	Desconocido	Not Defined	Not Defined	0.00170	0.00	CVE-2023-2575
2023-05-08	8.8	8.8	Advantech EKI-1524/EKI-1522/EKI-1521 escalada de privilegios	Desconocido	Not Defined	Not Defined	0.00432	0.00	CVE-2023-2574
2023-05-08	8.8	8.8	Advantech EKI-1524/EKI-1522/EKI-1521 NTP Server escalada de privilegios	Desconocido	Not Defined	Not Defined	0.00432	0.00	CVE-2023-2573
2022-10-21	8.5	8.4	Advantech R-SeeNet out Endpoint desbordamiento de búfer	Desconocido	Not Defined	Official Fix	0.00279	0.00	CVE-2022-3386
2022-10-21	8.5	8.4	Advantech R-SeeNet show_code Endpoint desbordamiento de búfer	Desconocido	Not Defined	Official Fix	0.00279	0.00	CVE-2022-3385
2022-10-21	6.4	6.3	Advantech R-SeeNet out.php directory traversal	Desconocido	Not Defined	Official Fix	0.00280	0.04	CVE-2022-3387
2022-09-28	7.4	7.4	Advantech iView ConfigurationServlet Endpoint checkSQLInjection sql injection	Desconocido	Not Defined	Not Defined	0.00222	0.00	CVE-2022-3323
2022-07-22	6.9	6.8	Advantech iView directory traversal	Desconocido	Not Defined	Not Defined	0.06622	0.00	CVE-2022-2139
2022-07-22	7.7	7.6	Advantech iView autenticación débil	Desconocido	Not Defined	Not Defined	0.01050	0.00	CVE-2022-2138
2022-07-22	9.8	9.6	Advantech iView escalada de privilegios	Desconocido	Not Defined	Not Defined	0.19528	0.04	CVE-2022-2143
2022-07-22	7.1	7.0	Advantech iView sql injection	Desconocido	Not Defined	Not Defined	0.00195	0.00	CVE-2022-2142
2022-07-22	4.8	4.7	Advantech iView sql injection	Desconocido	Not Defined	Not Defined	0.00221	0.00	CVE-2022-2137

270 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 270 results.

◂ AnteriorVisión De ConjuntoPróximo ▸

Do you need the next level of professionalism?

Upgrade your account now!