Advantech Webaccess Vulnérabilités

Chronologie

L'année dernière

Version

8.042
5.036
6.036
8.127
8.4.020

Contre-mesures

Official Fix106
Temporary Fix0
Workaround0
Unavailable0
Not Defined91

Exploitabilité

High5
Functional0
Proof-of-Concept7
Unproven0
Not Defined185

Vecteur d'accès

Not Defined0
Physical0
Local24
Adjacent3
Network170

Authentification

Not Defined0
High0
Low51
None146

Interaction de l'utilisateur

Not Defined0
Required38
None159

C3BM Index

L'année dernière

CVSSv3 Base

≤10
≤20
≤30
≤43
≤510
≤626
≤741
≤855
≤946
≤1016

CVSSv3 Temp

≤10
≤20
≤30
≤43
≤510
≤629
≤753
≤847
≤941
≤1014

VulDB

≤10
≤20
≤30
≤47
≤514
≤642
≤726
≤883
≤99
≤1016

NVD

≤10
≤20
≤30
≤40
≤52
≤66
≤710
≤852
≤920
≤1043

CNA

≤10
≤20
≤30
≤40
≤51
≤62
≤71
≤82
≤90
≤102

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k18
<2k69
<5k110
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k178
<2k17
<5k2
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

L'année dernière

🔴 CTI Activités

Affected Versions (118): 2.1.7.32, 2.1.9, 2.1.9.1, 2.1.9.2, 2.1.9.3, 2.1.9.4, 2.1.9.5, 2.1.9.6, 2.1.9.7, 2.1.9.8, 2.1.9.9, 2.1.9.11, 2.1.9.12, 2.1.9.13, 2.1.9.14, 2.1.9.15, 2.1.9.16, 2.1.9.17, 2.1.9.18, 2.1.9.19, 2.1.9.21, 2.1.9.22, 2.1.9.23, 2.1.9.24, 2.1.9.25, 2.1.9.26, 2.1.9.27, 2.1.9.28, 2.1.9.29, 2.1.9.31, 2.1.9.32, 2.1.9.33, 2.1.9.34, 2.1.9.35, 2.1.9.36, 2.1.9.37, 2.1.9.38, 2.1.9.39, 2.1.9.41, 2.1.9.42, 2.1.9.43, 2.1.9.44, 2.1.9.45, 2.1.9.46, 2.1.9.47, 2.1.9.48, 2.1.9.49, 2.1.9.51, 2.1.9.52, 2.1.9.53, 2.1.9.54, 2.1.9.55, 2.1.9.56, 2.1.9.57, 2.1.9.58, 2.1.9.59, 2.1.9.61, 2.1.9.62, 2.1.9.63, 2.1.9.64, 2.1.9.65, 2.1.9.66, 2.1.9.67, 2.1.9.68, 2.1.9.69, 2.1.9.71, 2.1.9.72, 2.1.9.73, 2.1.9.74, 2.1.9.75, 2.1.9.76, 2.1.9.77, 2.1.9.78, 2.1.9.79, 2.1.9.81, 2.1.9.82, 2.1.9.83, 2.1.9.84, 2.1.9.85, 2.1.9.86, 2.1.9.87, 2.1.9.88, 2.1.9.89, 2.1.9.91, 2.1.9.92, 2.1.9.93, 2.1.9.94, 2.1.9.95, 3, 3.0.1, 5.0, 6.0, 7.0, 7.1, 7.2, 8.0, 8.1, 8.2, 8.3, 8.3.1, 8.3.2, 8.3.3, 8.3.4, 8.3.5, 8.4, 8.4.1, 8.4.2, 8.4.3, 8.4.4, 8.4.5, 9, 9.0, 9.0.1, 9.0.2, 9.0.3, 9.02, 9.1.3, 9.1.5U

Link to Product Website: https://www.advantech.com/

Type de logiciel: SCADA Software

PubliéBaseTempVulnérabilité0dayAujourd'huiExpConCTICVE
21/03/20246.36.0Advantech WebAccess/SCADA sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-2453
17/10/20236.16.1Advantech WebAccess Credentials divulgation de l'information$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2023-4215
16/06/20239.89.4Advantech WebAccess/SCADA RPC buffer overflow$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-1437
30/05/20237.57.4Advantech WebAccess/SCADA ZIP File Local Privilege Escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-2866
18/11/20215.35.2Advantech WebAccess HMI Designer Session Token cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-42703
17/11/20218.18.0Advantech WebAccess/HMI Designer buffer overflow$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-42706
27/10/20215.35.2Advantech WebAccess/NMS authentification faible$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-32951
18/10/20219.89.6Advantech WebAccess buffer overflow$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-38389
18/10/20219.89.6Advantech WebAccess buffer overflow$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-33023
15/10/20214.34.2Advantech WebAccess SCADA API elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-38431
09/09/20216.36.1Advantech WebAccess buffer overflow$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-38408
10/08/20213.53.4Advantech WebAccess/SCADA UserExcelOut.asp cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-22676
10/08/20215.55.3Advantech WebAccess/SCADA directory traversal$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-22674
10/08/20216.36.0Advantech WebAccess/SCADA buffer overflow$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-32943
25/06/20216.36.3Advantech WebAccess HMI Designer buffer overflow$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-33004
25/06/20216.36.3Advantech WebAccess HMI Designer Project File buffer overflow$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-33002
25/06/20216.36.3Advantech WebAccess HMI Designer Project File buffer overflow$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-33000
20/06/20215.55.3Advantech WebAccess/SCADA URL Redirect$0-$5k$0-$5kNot DefinedNot Defined0.07CVE-2021-32956
20/06/20214.34.3Advantech WebAccess/SCADA File System directory traversal$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-32954
12/06/20213.53.5Advantech WebAccess bwRoot.asp WADashboard cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2021-34540
27/04/20215.55.5Advantech WebAccess/SCADA Portal elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-22669
19/03/20214.84.8Advantech WebAccess/SCADA cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-27436
04/03/20217.87.8Advantech WebAccess/SCADA elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2020-13554
23/02/20217.57.2Advantech WebAccess/SCADA WADashboard elévation de privilèges$0-$5kCalculateurNot DefinedOfficial Fix0.00CVE-2020-25161
18/02/20218.88.8Advantech WebAccess/SCADA COM Server elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2020-13555

172 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 172 results.

plus d'entrées par Advantech

PrécédentAperçuSuivant

Do you need the next level of professionalism?

Upgrade your account now!