Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Advantech Subscribe
Total 337 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-0986 1 Advantech 1 Advantech Webaccess 2025-04-12 6.8 MEDIUM N/A
Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the GotoCmd parameter.
CVE-2016-0858 1 Advantech 1 Webaccess 2025-04-12 9.3 HIGH 8.1 HIGH
Race condition in Advantech WebAccess before 8.1 allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow) via a crafted request.
CVE-2014-8388 1 Advantech 1 Webaccess 2025-04-12 7.2 HIGH N/A
Stack-based buffer overflow in Advantech WebAccess, formerly BroadWin WebAccess, before 8.0 allows remote attackers to execute arbitrary code via a crafted ip_address parameter in an HTML document.
CVE-2014-0991 1 Advantech 1 Advantech Webaccess 2025-04-12 6.8 MEDIUM N/A
Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the projectname parameter.
CVE-2014-0990 1 Advantech 1 Advantech Webaccess 2025-04-12 6.8 MEDIUM N/A
Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the UserName parameter.
CVE-2015-3947 1 Advantech 1 Webaccess 2025-04-12 6.5 MEDIUM 8.1 HIGH
SQL injection vulnerability in Advantech WebAccess before 8.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
CVE-2016-0854 1 Advantech 1 Webaccess 2025-04-12 10.0 HIGH 9.8 CRITICAL
Unrestricted file upload vulnerability in the uploadImageCommon function in the UploadAjaxAction script in the WebAccess Dashboard Viewer in Advantech WebAccess before 8.1 allows remote attackers to write to files of arbitrary types via unspecified vectors.
CVE-2016-0856 1 Advantech 1 Webaccess 2025-04-12 10.0 HIGH 9.8 CRITICAL
Multiple stack-based buffer overflows in Advantech WebAccess before 8.1 allow remote attackers to execute arbitrary code via unspecified vectors.
CVE-2016-4528 1 Advantech 1 Webaccess 2025-04-12 4.3 MEDIUM 5.0 MEDIUM
Buffer overflow in Advantech WebAccess before 8.1_20160519 allows local users to cause a denial of service via a crafted DLL file.
CVE-2015-3948 1 Advantech 1 Webaccess 2025-04-12 3.5 LOW 5.4 MEDIUM
Cross-site scripting (XSS) vulnerability in Advantech WebAccess before 8.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
CVE-2014-0989 1 Advantech 1 Advantech Webaccess 2025-04-12 6.8 MEDIUM N/A
Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the AccessCode2 parameter.
CVE-2015-3943 1 Advantech 1 Webaccess 2025-04-12 5.0 MEDIUM 5.3 MEDIUM
Advantech WebAccess before 8.1 allows remote attackers to read sensitive cleartext information about e-mail project accounts via unspecified vectors.
CVE-2016-0853 1 Advantech 1 Webaccess 2025-04-12 5.0 MEDIUM 7.5 HIGH
Advantech WebAccess before 8.1 allows remote attackers to obtain sensitive information via crafted input.
CVE-2014-0988 1 Advantech 1 Advantech Webaccess 2025-04-12 6.8 MEDIUM N/A
Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the AccessCode parameter.
CVE-2014-0987 1 Advantech 1 Advantech Webaccess 2025-04-12 6.8 MEDIUM N/A
Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the NodeName2 parameter.
CVE-2016-0855 1 Advantech 1 Webaccess 2025-04-12 5.0 MEDIUM 7.5 HIGH
Directory traversal vulnerability in Advantech WebAccess before 8.1 allows remote attackers to list arbitrary virtual-directory files via unspecified vectors.
CVE-2014-0985 1 Advantech 1 Advantech Webaccess 2025-04-12 6.8 MEDIUM N/A
Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the NodeName parameter.
CVE-2014-8385 1 Advantech 6 Eki-1200 Gateway Series Firmware, Eki-1221, Eki-1221d and 3 more 2025-04-12 10.0 HIGH N/A
Buffer overflow on Advantech EKI-1200 gateways with firmware before 1.63 allows remote attackers to execute arbitrary code via unspecified vectors.
CVE-2015-7938 1 Advantech 4 Eki-1321, Eki-1321 Series Firmware, Eki-1322 and 1 more 2025-04-12 10.0 HIGH 9.8 CRITICAL
Advantech EKI-132x devices with firmware before 2015-12-31 allow remote attackers to bypass authentication via unspecified vectors.
CVE-2014-8386 1 Advantech 1 Adamview 2025-04-12 7.5 HIGH N/A
Multiple stack-based buffer overflows in Advantech AdamView 4.3 and earlier allow remote attackers to execute arbitrary code via a crafted (1) display properties or (2) conditional bitmap parameter in a GNI file.