CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-0763

Multiple SQL injection vulnerabilities in DBVisitor.dll in Advantech WebAccess before 7.2 allow remote attackers to execute arbitrary SQL commands via SOAP requests to unspecified functions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.317

EPSS Ranking 96.6%

CVSS Severity

CVSS v2 Score 7.5

References

http://ics-cert.us-cert.gov/advisories/ICSA-14-079-03
http://www.securityfocus.com/bid/66740
http://ics-cert.us-cert.gov/advisories/ICSA-14-079-03
http://www.securityfocus.com/bid/66740

Products affected by CVE-2014-0763

Advantech » Advantech Webaccess » Version: 5.0

cpe:2.3:a:advantech:advantech_webaccess:5.0
Advantech » Advantech Webaccess » Version: 6.0

cpe:2.3:a:advantech:advantech_webaccess:6.0
Advantech » Advantech Webaccess » Version: 7.0

cpe:2.3:a:advantech:advantech_webaccess:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-0763

Products

Pricing

Contact Us