Advantech

Iview

39 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.7

CVE-2025-13373

  • EPSS 0.03%
  • Veröffentlicht 04.12.2025 22:50:36
  • Zuletzt bearbeitet 08.12.2025 18:27:15

Advantech iView versions 5.7.05.7057 and prior do not properly sanitize SNMP v1 trap (Port 162) requests, which could allow an attacker to inject SQL commands.

7.2

CVE-2022-50595

  • EPSS 0.29%
  • Veröffentlicht 06.11.2025 20:15:38
  • Zuletzt bearbeitet 24.11.2025 18:14:17

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘ztp_search_value’ parame...

7.5

CVE-2022-50594

  • EPSS 0.21%
  • Veröffentlicht 06.11.2025 20:15:37
  • Zuletzt bearbeitet 24.11.2025 18:18:59

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘data’ parameter to the ‘...

9.8

CVE-2022-50593

  • EPSS 0.32%
  • Veröffentlicht 06.11.2025 20:15:37
  • Zuletzt bearbeitet 08.12.2025 16:12:55

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘search_term’ parameter t...

7.2

CVE-2022-50592

  • EPSS 0.29%
  • Veröffentlicht 06.11.2025 20:15:37
  • Zuletzt bearbeitet 24.11.2025 18:54:19

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘getInventoryReportData’ ...

9.8

CVE-2022-50591

  • EPSS 0.21%
  • Veröffentlicht 06.11.2025 20:15:37
  • Zuletzt bearbeitet 24.11.2025 18:55:56

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘ztp_config_id’ parameter...

7.1

CVE-2025-53509

  • EPSS 0.04%
  • Veröffentlicht 10.07.2025 23:29:10
  • Zuletzt bearbeitet 01.08.2025 19:16:23

A vulnerability exists in Advantech iView that allows for argument injection in the NetworkServlet.restoreDatabase(). This issue requires an authenticated attacker with at least user-level privileges. An input parameter can be used directly in a c...

7.1

CVE-2025-52459

  • EPSS 0.03%
  • Veröffentlicht 10.07.2025 23:28:08
  • Zuletzt bearbeitet 15.07.2025 13:14:49

A vulnerability exists in Advantech iView that allows for argument injection in NetworkServlet.backupDatabase(). This issue requires an authenticated attacker with at least user-level privileges. Certain parameters can be used directly in a comman...

8.8

CVE-2025-53515

  • EPSS 0.19%
  • Veröffentlicht 10.07.2025 23:25:51
  • Zuletzt bearbeitet 01.08.2025 19:13:59

A vulnerability exists in Advantech iView that allows for SQL injection and remote code execution through NetworkServlet.archiveTrap(). This issue requires an authenticated attacker with at least user-level privileges. Certain input parameters are...

8.8

CVE-2025-52577

  • EPSS 0.19%
  • Veröffentlicht 10.07.2025 23:24:42
  • Zuletzt bearbeitet 23.07.2025 19:20:13

A vulnerability exists in Advantech iView that could allow SQL injection and remote code execution through NetworkServlet.archiveTrapRange(). This issue requires an authenticated attacker with at least user-level privileges. Certain input paramete...