Advantech CVEs and Security Vulnerabilities

Filtered by vendor Advantech Subscriptions

Search

Switch to Advanced Search (Beta)

Total 337 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2015-6476	1 Advantech	14 Eki-1221, Eki-1221d, Eki-1222 and 11 more	2025-04-12	N/A
Advantech EKI-122x-BE devices with firmware before 1.65, EKI-132x devices with firmware before 1.98, and EKI-136x devices with firmware before 1.27 have hardcoded SSH keys, which makes it easier for remote attackers to obtain access via an SSH session.
CVE-2016-0851	1 Advantech	1 Webaccess	2025-04-12	N/A
Advantech WebAccess before 8.1 allows remote attackers to cause a denial of service (out-of-bounds memory access) via unspecified vectors.
CVE-2015-7938	1 Advantech	4 Eki-1321, Eki-1321 Series Firmware, Eki-1322 and 1 more	2025-04-12	N/A
Advantech EKI-132x devices with firmware before 2015-12-31 allow remote attackers to bypass authentication via unspecified vectors.
CVE-2015-6467	1 Advantech	1 Webaccess	2025-04-12	N/A
Advantech WebAccess before 8.1 allows remote attackers to execute arbitrary code via vectors involving a browser plugin.
CVE-2015-3948	1 Advantech	1 Webaccess	2025-04-12	N/A
Cross-site scripting (XSS) vulnerability in Advantech WebAccess before 8.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
CVE-2014-0992	1 Advantech	1 Advantech Webaccess	2025-04-12	N/A
Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the password parameter.
CVE-2015-3946	1 Advantech	1 Webaccess	2025-04-12	N/A
Cross-site request forgery (CSRF) vulnerability in Advantech WebAccess before 8.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
CVE-2015-3943	1 Advantech	1 Webaccess	2025-04-12	N/A
Advantech WebAccess before 8.1 allows remote attackers to read sensitive cleartext information about e-mail project accounts via unspecified vectors.
CVE-2014-8387	1 Advantech	2 Eki-6340, Eki-6340 Firmware	2025-04-12	N/A
cgi/utility.cgi in Advantech EKI-6340 2.05 Wi-Fi Mesh Access Point allows remote authenticated users to execute arbitrary commands via shell metacharacters in the pinghost parameter to ping.cgi.
CVE-2015-3947	1 Advantech	1 Webaccess	2025-04-12	N/A
SQL injection vulnerability in Advantech WebAccess before 8.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
CVE-2016-4525	1 Advantech	1 Webaccess	2025-04-12	N/A
Unspecified ActiveX controls in Advantech WebAccess before 8.1_20160519 allow remote authenticated users to obtain sensitive information or modify data via unknown vectors, related to the INTERFACESAFE_FOR_UNTRUSTED_CALLER (aka safe for scripting) flag.
CVE-2014-9208	1 Advantech	1 Webaccess	2025-04-12	N/A
Multiple stack-based buffer overflows in unspecified DLL files in Advantech WebAccess before 8.0.1 allow remote attackers to execute arbitrary code via unknown vectors.
CVE-2014-8388	1 Advantech	1 Webaccess	2025-04-12	N/A
Stack-based buffer overflow in Advantech WebAccess, formerly BroadWin WebAccess, before 8.0 allows remote attackers to execute arbitrary code via a crafted ip_address parameter in an HTML document.
CVE-2014-8385	1 Advantech	6 Eki-1200 Gateway Series Firmware, Eki-1221, Eki-1221d and 3 more	2025-04-12	N/A
Buffer overflow on Advantech EKI-1200 gateways with firmware before 1.63 allows remote attackers to execute arbitrary code via unspecified vectors.
CVE-2014-8386	1 Advantech	1 Adamview	2025-04-12	N/A
Multiple stack-based buffer overflows in Advantech AdamView 4.3 and earlier allow remote attackers to execute arbitrary code via a crafted (1) display properties or (2) conditional bitmap parameter in a GNI file.
CVE-2014-0991	1 Advantech	1 Advantech Webaccess	2025-04-12	N/A
Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the projectname parameter.
CVE-2014-0990	1 Advantech	1 Advantech Webaccess	2025-04-12	N/A
Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the UserName parameter.
CVE-2014-0989	1 Advantech	1 Advantech Webaccess	2025-04-12	N/A
Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the AccessCode2 parameter.
CVE-2014-0987	1 Advantech	1 Advantech Webaccess	2025-04-12	N/A
Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the NodeName2 parameter.
CVE-2014-0988	1 Advantech	1 Advantech Webaccess	2025-04-12	N/A
Stack-based buffer overflow in Advantech WebAccess (formerly BroadWin WebAccess) 7.2 allows remote attackers to execute arbitrary code via the AccessCode parameter.

« first previous Page 5 of 17. next last »