Advantech

Eki-1524 Firmware

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2023-4203

Exploit
  • EPSS 0.87%
  • Veröffentlicht 08.08.2023 11:15:12
  • Zuletzt bearbeitet 13.02.2025 17:17:16

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, which can be triggered by authenticated users in the ping tool of the web-interface.

5.4

CVE-2023-4202

Exploit
  • EPSS 0.16%
  • Veröffentlicht 08.08.2023 11:15:11
  • Zuletzt bearbeitet 13.02.2025 17:17:15

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, which can be triggered by authenticated users in the device name field of the web-interface.

8.8

CVE-2023-2573

Exploit
  • EPSS 2.02%
  • Veröffentlicht 08.05.2023 13:15:09
  • Zuletzt bearbeitet 13.02.2025 17:16:21

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection vulnerability in the NTP server input field, which can be triggered by authenticated users via a crafted POST request.

8.8

CVE-2023-2574

Exploit
  • EPSS 1.5%
  • Veröffentlicht 08.05.2023 13:15:09
  • Zuletzt bearbeitet 13.02.2025 17:16:21

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection vulnerability in the device name input field, which can be triggered by authenticated users via a crafted POST request.

8.8

CVE-2023-2575

Exploit
  • EPSS 2.18%
  • Veröffentlicht 08.05.2023 13:15:09
  • Zuletzt bearbeitet 21.11.2024 07:58:51

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stack-based Buffer Overflow vulnerability, which can be triggered by authenticated users via a crafted POST request.