Advantech CVEs and Security Vulnerabilities

Filtered by vendor Advantech Subscriptions

Search

Switch to Advanced Search (Beta)

Total 337 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2016-0852	1 Advantech	1 Webaccess	2025-04-12	N/A
Advantech WebAccess before 8.1 allows remote attackers to bypass an intended administrative requirement and obtain file or folder access via unspecified vectors.
CVE-2016-0853	1 Advantech	1 Webaccess	2025-04-12	N/A
Advantech WebAccess before 8.1 allows remote attackers to obtain sensitive information via crafted input.
CVE-2015-6467	1 Advantech	1 Webaccess	2025-04-12	N/A
Advantech WebAccess before 8.1 allows remote attackers to execute arbitrary code via vectors involving a browser plugin.
CVE-2014-0765	1 Advantech	1 Advantech Webaccess	2025-04-12	N/A
Stack-based buffer overflow in Advantech WebAccess before 7.2 allows remote attackers to execute arbitrary code via a long GotoCmd argument.
CVE-2015-3948	1 Advantech	1 Webaccess	2025-04-12	N/A
Cross-site scripting (XSS) vulnerability in Advantech WebAccess before 8.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
CVE-2015-3947	1 Advantech	1 Webaccess	2025-04-12	N/A
SQL injection vulnerability in Advantech WebAccess before 8.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
CVE-2014-0764	1 Advantech	1 Advantech Webaccess	2025-04-12	N/A
Stack-based buffer overflow in Advantech WebAccess before 7.2 allows remote attackers to execute arbitrary code via a long NodeName parameter.
CVE-2014-8387	1 Advantech	2 Eki-6340, Eki-6340 Firmware	2025-04-12	N/A
cgi/utility.cgi in Advantech EKI-6340 2.05 Wi-Fi Mesh Access Point allows remote authenticated users to execute arbitrary commands via shell metacharacters in the pinghost parameter to ping.cgi.
CVE-2015-3946	1 Advantech	1 Webaccess	2025-04-12	N/A
Cross-site request forgery (CSRF) vulnerability in Advantech WebAccess before 8.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
CVE-2015-3943	1 Advantech	1 Webaccess	2025-04-12	N/A
Advantech WebAccess before 8.1 allows remote attackers to read sensitive cleartext information about e-mail project accounts via unspecified vectors.
CVE-2014-0763	1 Advantech	1 Advantech Webaccess	2025-04-12	N/A
Multiple SQL injection vulnerabilities in DBVisitor.dll in Advantech WebAccess before 7.2 allow remote attackers to execute arbitrary SQL commands via SOAP requests to unspecified functions.
CVE-2014-9208	1 Advantech	1 Webaccess	2025-04-12	N/A
Multiple stack-based buffer overflows in unspecified DLL files in Advantech WebAccess before 8.0.1 allow remote attackers to execute arbitrary code via unknown vectors.
CVE-2014-9202	1 Advantech	1 Webaccess	2025-04-12	N/A
Multiple stack-based buffer overflows in an unspecified DLL file in Advantech WebAccess before 8.0_20150816 allow remote attackers to execute arbitrary code via a crafted file that triggers long string arguments to functions.
CVE-2014-0768	1 Advantech	1 Advantech Webaccess	2025-04-12	N/A
Stack-based buffer overflow in Advantech WebAccess before 7.2 allows remote attackers to execute arbitrary code via a long AccessCode2 argument.
CVE-2014-8388	1 Advantech	1 Webaccess	2025-04-12	N/A
Stack-based buffer overflow in Advantech WebAccess, formerly BroadWin WebAccess, before 8.0 allows remote attackers to execute arbitrary code via a crafted ip_address parameter in an HTML document.
CVE-2014-8385	1 Advantech	6 Eki-1200 Gateway Series Firmware, Eki-1221, Eki-1221d and 3 more	2025-04-12	N/A
Buffer overflow on Advantech EKI-1200 gateways with firmware before 1.63 allows remote attackers to execute arbitrary code via unspecified vectors.
CVE-2014-8386	1 Advantech	1 Adamview	2025-04-12	N/A
Multiple stack-based buffer overflows in Advantech AdamView 4.3 and earlier allow remote attackers to execute arbitrary code via a crafted (1) display properties or (2) conditional bitmap parameter in a GNI file.
CVE-2014-2368	1 Advantech	1 Advantech Webaccess	2025-04-12	N/A
The BrowseFolder method in the bwocxrun ActiveX control in Advantech WebAccess before 7.2 allows remote attackers to read arbitrary files via a crafted call.
CVE-2014-2367	1 Advantech	1 Advantech Webaccess	2025-04-12	N/A
The ChkCookie subroutine in an ActiveX control in broadweb/include/gChkCook.asp in Advantech WebAccess before 7.2 allows remote attackers to read arbitrary files via a crafted call.
CVE-2014-2366	1 Advantech	1 Advantech Webaccess	2025-04-12	N/A
upAdminPg.asp in Advantech WebAccess before 7.2 allows remote authenticated users to discover credentials by reading HTML source code.

« first previous Page 4 of 17. next last »