Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-53509

A vulnerability exists in Advantech iView that allows for argument injection in the NetworkServlet.restoreDatabase(). This issue requires an authenticated attacker with at least user-level privileges. An input parameter can be used directly in a command without proper sanitization, allowing arbitrary arguments to be injected. This can result in information disclosure, including sensitive database credentials.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.9%
CVSS Severity
CVSS v3 Score 6.5
Products affected by CVE-2025-53509
  • Advantech » Iview » Version: 5.6
    cpe:2.3:a:advantech:iview:5.6
  • Advantech » Iview » Version: 5.7
    cpe:2.3:a:advantech:iview:5.7
  • Advantech » Iview » Version: 5.7.02
    cpe:2.3:a:advantech:iview:5.7.02
  • Advantech » Iview » Version: 5.7.03.6112
    cpe:2.3:a:advantech:iview:5.7.03.6112
  • Advantech » Iview » Version: 5.7.03.6182
    cpe:2.3:a:advantech:iview:5.7.03.6182
  • Advantech » Iview » Version: 5.7.04.6469
    cpe:2.3:a:advantech:iview:5.7.04.6469
  • Advantech » Iview » Version: 5.7.04.6583
    cpe:2.3:a:advantech:iview:5.7.04.6583
  • Advantech » Iview » Version: 5.7.04.6752
    cpe:2.3:a:advantech:iview:5.7.04.6752
  • Advantech » Iview » Version: 5.7.05.6425
    cpe:2.3:a:advantech:iview:5.7.05.6425
  • Advantech » Iview » Version: 5.7.05.6469
    cpe:2.3:a:advantech:iview:5.7.05.6469
  • Advantech » Iview » Version: 5.7.05.6583
    cpe:2.3:a:advantech:iview:5.7.05.6583
  • Advantech » Iview » Version: 5.7.05.6752
    cpe:2.3:a:advantech:iview:5.7.05.6752
  • Advantech » Iview » Version: 5.7.05.6872
    cpe:2.3:a:advantech:iview:5.7.05.6872
  • Advantech » Iview » Version: 5.7.05.6927
    cpe:2.3:a:advantech:iview:5.7.05.6927


Products
Pricing
Contact Us

Shodan ® - All rights reserved