Advantech Sårbarheter

Tidslinje

Typ

Produkt

Advantech WebAccess163
Advantech R-SeeNet39
Advantech SCADA29
Advantech iView22
Advantech WebAccess HMI Designer14

Åtgärd

Official Fix156
Temporary Fix0
Workaround1
Unavailable0
Not Defined138

Utnyttjbarhet

High5
Functional0
Proof-of-Concept11
Unproven0
Not Defined279

Åtkomstvektor

Not Defined0
Physical0
Local25
Adjacent11
Network259

Autentisering

Not Defined0
High4
Low108
None183

Användarinteraktion

Not Defined0
Required47
None248

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤48
≤514
≤633
≤775
≤875
≤968
≤1022

CVSSv3 Temp

≤10
≤20
≤30
≤48
≤514
≤661
≤767
≤863
≤962
≤1020

VulDB

≤10
≤20
≤30
≤418
≤520
≤649
≤758
≤8111
≤917
≤1022

NVD

≤10
≤20
≤30
≤40
≤52
≤610
≤714
≤862
≤922
≤1061

CNA

≤10
≤20
≤30
≤40
≤52
≤62
≤73
≤85
≤99
≤108

Säljare

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Utnyttja 0-dagars

<1k26
<2k127
<5k142
<10k0
<25k0
<50k0
<100k0
≥100k0

Utnyttja idag

<1k268
<2k25
<5k2
<10k0
<25k0
<50k0
<100k0
≥100k0

Utnyttja marknadsvolymen

🔴 CTI Aktiviteter

Affected Products (42): ADAM-3600 (1), Adam-6501 (1), AdamView (1), Advantech Studio (1), BB-ESWGP506-2SFP-T (1), DeviceOn (2), DiagAnywhere Server (1), EKI-122x-BE (1), EKI-132x (1), EKI-136x (1), EKI-1200 Gateway (1), EKI-1521 (5), EKI-1522 (5), EKI-1524 (5), EKI-6340 (1), HMI Designer (4), MESR901 (1), Modbus RTU OPC Server (1), NMS (9), OTA Server (1), R-SeeNet (39), RMM (4), SCADA (29), SQ Manager Server (1), SUISAccess Server (3), Spectre RT ERT351 (2), Spectre RT Industrial Routers ERT351 (1), VESP211-232 (1), VESP211-EU (1), WISE-PaaS (5), WISE-PaaS RMM (1), WebAccess (163), WebAccess Dashboard (11), WebAccess HMI Designer (14), WebAccess Node (10), WebAccess SCADA (10), WebAccess Scada Node (11), WebAccss (3), WebOP (1), iEdge Server (1), iService (1), iView (22)

Link to Vendor Website: https://www.advantech.com/

PubliceradBaseTempSårbarhetProdUtnRemCTIEPSSCVE
21/03/20246.36.0Advantech WebAccess/SCADA sql injektionSCADA SoftwareNot DefinedOfficial Fix0.020.00043CVE-2024-2453
18/10/20238.58.5Advantech R-SeeNet snmpmon.ini informationsgivningOkändNot DefinedNot Defined0.000.00890CVE-2023-5642
17/10/20236.16.1Advantech WebAccess Credentials informationsgivningSCADA SoftwareNot DefinedNot Defined0.040.00094CVE-2023-4215
08/08/20236.06.0Advantech EKI-1524/EKI-1522/EKI-1521 Web Interface cross site scriptingOkändNot DefinedNot Defined0.000.00053CVE-2023-4203
08/08/20236.06.0Advantech EKI-1524/EKI-1522/EKI-1521 Web Interface cross site scriptingOkändNot DefinedNot Defined0.020.00053CVE-2023-4202
31/07/20236.96.8Advantech iView checkSQLInjection sql injektionOkändNot DefinedOfficial Fix0.000.00084CVE-2023-3983
22/06/20237.77.7Advantech R-SeeNet privilegier eskaleringOkändNot DefinedNot Defined0.000.00178CVE-2023-3256
22/06/20239.89.6Advantech R-SeeNet svag autentiseringOkändNot DefinedNot Defined0.000.00238CVE-2023-2611
16/06/20239.89.4Advantech WebAccess/SCADA RPC minneskorruptionSCADA SoftwareNot DefinedOfficial Fix0.020.00089CVE-2023-1437
01/06/20237.26.9Advantech WebAccss/SCADA Certificate File privilegier eskaleringSCADA SoftwareNot DefinedOfficial Fix0.000.00166CVE-2023-32628
01/06/20237.27.0Advantech WebAccss/SCADA privilegier eskaleringSCADA SoftwareNot DefinedOfficial Fix0.020.00075CVE-2023-22450
01/06/20238.18.0Advantech WebAccss/SCADA privilegier eskaleringSCADA SoftwareNot DefinedOfficial Fix0.000.00081CVE-2023-32540
30/05/20237.57.4Advantech WebAccess/SCADA ZIP File Local Privilege EscalationSCADA SoftwareNot DefinedOfficial Fix0.020.00054CVE-2023-2866
08/05/20238.88.8Advantech EKI-1524/EKI-1522/EKI-1521 POST minneskorruptionOkändNot DefinedNot Defined0.000.00147CVE-2023-2575
08/05/20238.88.8Advantech EKI-1524/EKI-1522/EKI-1521 privilegier eskaleringOkändNot DefinedNot Defined0.000.00378CVE-2023-2574
08/05/20238.88.8Advantech EKI-1524/EKI-1522/EKI-1521 NTP Server privilegier eskaleringOkändNot DefinedNot Defined0.000.00378CVE-2023-2573
21/10/20228.58.4Advantech R-SeeNet out Endpoint minneskorruptionOkändNot DefinedOfficial Fix0.000.00452CVE-2022-3386
21/10/20228.58.4Advantech R-SeeNet show_code Endpoint minneskorruptionOkändNot DefinedOfficial Fix0.000.00452CVE-2022-3385
21/10/20226.46.3Advantech R-SeeNet out.php kataloggenomgångOkändNot DefinedOfficial Fix0.000.00408CVE-2022-3387
28/09/20227.47.4Advantech iView ConfigurationServlet Endpoint checkSQLInjection sql injektionOkändNot DefinedNot Defined0.000.00204CVE-2022-3323
22/07/20226.96.8Advantech iView kataloggenomgångOkändNot DefinedNot Defined0.000.05966CVE-2022-2139
22/07/20227.77.6Advantech iView svag autentiseringOkändNot DefinedNot Defined0.030.01242CVE-2022-2138
22/07/20229.89.6Advantech iView privilegier eskaleringOkändNot DefinedNot Defined0.030.23080CVE-2022-2143
22/07/20227.17.0Advantech iView sql injektionOkändNot DefinedNot Defined0.000.00196CVE-2022-2142
22/07/20224.84.7Advantech iView sql injektionOkändNot DefinedNot Defined0.000.00221CVE-2022-2137

270 fler poster visas inte

Do you need the next level of professionalism?

Upgrade your account now!