Advantech Webaccess 漏洞

时间轴

去年

版本

8.0	42
5.0	36
6.0	36
8.1	27
8.4.0	20

修正

Official Fix	106
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	91

易受攻击性

High	5
Functional	0
Proof-of-Concept	7
Unproven	0
Not Defined	185

访问向量

Not Defined	0
Physical	0
Local	24
Adjacent	3
Network	170

身份验证

Not Defined	0
High	0
Low	51
None	146

用户交互

Not Defined	0
Required	38
None	159

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	3
≤5	10
≤6	26
≤7	41
≤8	55
≤9	46
≤10	16

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	3
≤5	10
≤6	28
≤7	54
≤8	47
≤9	41
≤10	14

VulDB

≤1	0
≤2	0
≤3	0
≤4	7
≤5	14
≤6	42
≤7	26
≤8	83
≤9	9
≤10	16

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	6
≤7	10
≤8	52
≤9	20
≤10	43

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	1
≤6	2
≤7	2
≤8	2
≤9	0
≤10	2

供应商

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

零日攻击

<1k	18
<2k	69
<5k	110
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

本日攻击

<1k	179
<2k	17
<5k	1
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Affected Versions (118): 2.1.7.32, 2.1.9, 2.1.9.1, 2.1.9.2, 2.1.9.3, 2.1.9.4, 2.1.9.5, 2.1.9.6, 2.1.9.7, 2.1.9.8, 2.1.9.9, 2.1.9.11, 2.1.9.12, 2.1.9.13, 2.1.9.14, 2.1.9.15, 2.1.9.16, 2.1.9.17, 2.1.9.18, 2.1.9.19, 2.1.9.21, 2.1.9.22, 2.1.9.23, 2.1.9.24, 2.1.9.25, 2.1.9.26, 2.1.9.27, 2.1.9.28, 2.1.9.29, 2.1.9.31, 2.1.9.32, 2.1.9.33, 2.1.9.34, 2.1.9.35, 2.1.9.36, 2.1.9.37, 2.1.9.38, 2.1.9.39, 2.1.9.41, 2.1.9.42, 2.1.9.43, 2.1.9.44, 2.1.9.45, 2.1.9.46, 2.1.9.47, 2.1.9.48, 2.1.9.49, 2.1.9.51, 2.1.9.52, 2.1.9.53, 2.1.9.54, 2.1.9.55, 2.1.9.56, 2.1.9.57, 2.1.9.58, 2.1.9.59, 2.1.9.61, 2.1.9.62, 2.1.9.63, 2.1.9.64, 2.1.9.65, 2.1.9.66, 2.1.9.67, 2.1.9.68, 2.1.9.69, 2.1.9.71, 2.1.9.72, 2.1.9.73, 2.1.9.74, 2.1.9.75, 2.1.9.76, 2.1.9.77, 2.1.9.78, 2.1.9.79, 2.1.9.81, 2.1.9.82, 2.1.9.83, 2.1.9.84, 2.1.9.85, 2.1.9.86, 2.1.9.87, 2.1.9.88, 2.1.9.89, 2.1.9.91, 2.1.9.92, 2.1.9.93, 2.1.9.94, 2.1.9.95, 3, 3.0.1, 5.0, 6.0, 7.0, 7.1, 7.2, 8.0, 8.1, 8.2, 8.3, 8.3.1, 8.3.2, 8.3.3, 8.3.4, 8.3.5, 8.4, 8.4.1, 8.4.2, 8.4.3, 8.4.4, 8.4.5, 9, 9.0, 9.0.1, 9.0.2, 9.0.3, 9.02, 9.1.3, 9.1.5U

Link to Product Website: https://www.advantech.com/

软件类型: SCADA Software

已发布	Base	Temp	漏洞	0day	今天	易	修正	CTI	CVE
2024-03-21	6.3	6.2	Advantech WebAccess/SCADA SQL注入	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2024-2453
2023-10-17	6.1	6.1	Advantech WebAccess Credentials 信息公开	$0-$5k	$0-$5k	Not Defined	Not Defined	0.04	CVE-2023-4215
2023-06-16	9.8	9.4	Advantech WebAccess/SCADA RPC 内存损坏	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-1437
2023-05-30	7.5	7.4	Advantech WebAccess/SCADA ZIP File Local Privilege Escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-2866
2021-11-18	5.3	5.2	Advantech WebAccess HMI Designer Session Token 跨网站脚本	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-42703
2021-11-17	8.1	8.0	Advantech WebAccess/HMI Designer 内存损坏	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-42706
2021-10-27	5.3	5.2	Advantech WebAccess/NMS 弱身份验证	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-32951
2021-10-18	9.8	9.6	Advantech WebAccess 内存损坏	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2021-38389
2021-10-18	9.8	9.6	Advantech WebAccess 内存损坏	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2021-33023
2021-10-15	4.3	4.2	Advantech WebAccess SCADA API 权限升级	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2021-38431
2021-09-09	6.3	6.1	Advantech WebAccess 内存损坏	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2021-38408
2021-08-10	3.5	3.4	Advantech WebAccess/SCADA UserExcelOut.asp 跨网站脚本	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-22676
2021-08-10	5.5	5.3	Advantech WebAccess/SCADA 目录遍历	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-22674
2021-08-10	6.3	6.0	Advantech WebAccess/SCADA 内存损坏	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-32943
2021-06-25	6.3	6.3	Advantech WebAccess HMI Designer 内存损坏	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2021-33004
2021-06-25	6.3	6.3	Advantech WebAccess HMI Designer Project File 内存损坏	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2021-33002
2021-06-25	6.3	6.3	Advantech WebAccess HMI Designer Project File 内存损坏	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2021-33000
2021-06-20	5.5	5.3	Advantech WebAccess/SCADA URL Redirect	$0-$5k	$0-$5k	Not Defined	Not Defined	0.07	CVE-2021-32956
2021-06-20	4.3	4.3	Advantech WebAccess/SCADA File System 目录遍历	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2021-32954
2021-06-12	3.5	3.5	Advantech WebAccess bwRoot.asp WADashboard 跨网站脚本	$0-$5k	$0-$5k	Not Defined	Not Defined	0.02	CVE-2021-34540
2021-04-27	5.5	5.5	Advantech WebAccess/SCADA Portal 权限升级	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2021-22669
2021-03-19	4.8	4.8	Advantech WebAccess/SCADA 跨网站脚本	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2021-27436
2021-03-04	7.8	7.8	Advantech WebAccess/SCADA 权限升级	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2020-13554
2021-02-23	7.5	7.2	Advantech WebAccess/SCADA WADashboard 权限升级	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-25161
2021-02-18	8.8	8.8	Advantech WebAccess/SCADA COM Server 权限升级	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2020-13555

172 更多条目未显示

🔒 Login Required

You need to signup and login to see more of the remaining 172 results.

更多条目由 Advantech

◂ 上一步一览下一步 ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!