Vulnerability Details CVE-2021-22654
Advantech iView versions prior to v5.7.03.6112 are vulnerable to a SQL injection, which may allow an unauthorized attacker to disclose information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.3%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- https://us-cert.cisa.gov/ics/advisories/icsa-21-040-02
- https://www.zerodayinitiative.com/advisories/ZDI-21-188/
- https://www.zerodayinitiative.com/advisories/ZDI-21-190/
- https://us-cert.cisa.gov/ics/advisories/icsa-21-040-02
- https://www.zerodayinitiative.com/advisories/ZDI-21-188/
- https://www.zerodayinitiative.com/advisories/ZDI-21-190/