Advantech: >> Iview >> 5.7 Security Vulnerabilities
Access to the Advantech iView versions prior to v5.7.03.6112 configuration are missing authentication, which may allow an unauthorized attacker to change the configuration and obtain code execution.
CVSS Score
9.8
EPSS Score
0.409
Published
2021-02-11
Advantech iView versions prior to v5.7.03.6112 are vulnerable to a SQL injection, which may allow an unauthorized attacker to disclose information.
CVSS Score
7.5
EPSS Score
0.004
Published
2021-02-11
Advantech iView versions prior to v5.7.03.6112 are vulnerable to directory traversal, which may allow an attacker to read sensitive files.
CVSS Score
7.5
EPSS Score
0.019
Published
2021-02-11
Advantech iView versions prior to v5.7.03.6112 are vulnerable to a SQL injection, which may allow an attacker to escalate privileges to 'Administrator'.
CVSS Score
9.8
EPSS Score
0.004
Published
2021-02-11
Advantech iView, Versions 5.7 and prior. The affected product is vulnerable to path traversal vulnerabilities that could allow an attacker to create/download arbitrary files, limit system availability, and remotely execute code.
CVSS Score
9.8
EPSS Score
0.159
Published
2020-08-25
Page 3