Aggregates CVE and security vulnerability intelligence across all Advantech-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk sql injection and vendor risk path handling and related problems; some flaws may lead to vendor impact memory corruption, affecting vendor surface production workloads scenarios.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-53515 | A vulnerability exists in Advantech iView that allows for SQL injection and remote code execution through NetworkServlet.archiveTrap(). This issue requires an authenticated attacker with at least user-level privileges. Certain input parameters are not sanitized, allowing an attacker to perform SQL injection and potentially execute code in the context of the 'nt authority\local service' account. | [email protected] | 8.7 | 0.50% | 2025-07-10 | 2026-06-17 |
| CVE-2025-53509 | A vulnerability exists in Advantech iView that allows for argument injection in the NetworkServlet.restoreDatabase(). This issue requires an authenticated attacker with at least user-level privileges. An input parameter can be used directly in a command without proper sanitization, allowing arbitrary arguments to be injected. This can result in information disclosure, including sensitive database credentials. | [email protected] | 7.1 | 0.29% | 2025-07-10 | 2026-06-17 |
| CVE-2025-53475 | A vulnerability exists in Advantech iView that could allow for SQL injection and remote code execution through NetworkServlet.getNextTrapPage(). This issue requires an authenticated attacker with at least user-level privileges. Certain parameters in this function are not properly sanitized, allowing an attacker to perform SQL injection and potentially execute code in the context of the 'nt authority\local service' account. | [email protected] | 8.7 | 4.28% | 2025-07-10 | 2026-06-17 |
| CVE-2025-53397 | A vulnerability exists in Advantech iView versions prior to 5.7.05 build 7057, which could allow a reflected cross-site scripting (XSS) attack. By exploiting this flaw, an attacker could execute unauthorized scripts in the user's browser, potentially leading to information disclosure or other malicious activities. | [email protected] | 5.1 | 0.19% | 2025-07-10 | 2026-06-17 |
| CVE-2025-52577 | A vulnerability exists in Advantech iView that could allow SQL injection and remote code execution through NetworkServlet.archiveTrapRange(). This issue requires an authenticated attacker with at least user-level privileges. Certain input parameters are not properly sanitized, allowing an attacker to perform SQL injection and potentially execute code in the context of the 'nt authority\local service' account. | [email protected] | 8.7 | 0.50% | 2025-07-10 | 2026-06-17 |
| CVE-2025-48891 | A vulnerability exists in Advantech iView that could allow for SQL injection through the CUtils.checkSQLInjection() function. This vulnerability can be exploited by an authenticated attacker with at least user-level privileges, potentially leading to information disclosure or a denial-of-service condition. | [email protected] | 7.2 | 0.27% | 2025-07-10 | 2026-06-17 |
| CVE-2025-46704 | A vulnerability exists in Advantech iView in NetworkServlet.processImportRequest() that could allow for a directory traversal attack. This issue requires an authenticated attacker with at least user-level privileges. A specific parameter is not properly sanitized or normalized, potentially allowing an attacker to determine the existence of arbitrary files on the server. | [email protected] | 5.3 | 3.32% | 2025-07-10 | 2026-06-17 |
| CVE-2025-41442 | A vulnerability exists in Advantech iView versions prior to 5.7.05 build 7057, which could allow a reflected cross-site scripting (XSS) attack. By manipulating certain input parameters, an attacker could execute unauthorized scripts in the user's browser, potentially leading to information disclosure or other malicious activities. | [email protected] | 5.1 | 0.19% | 2025-07-10 | 2026-06-17 |
| CVE-2025-48470 | Successful exploitation of the stored cross-site scripting vulnerability could allow an attacker to inject malicious scripts into device fields and executed in other users’ browser, potentially leading to session hijacking, defacement, credential theft, or privilege escalation. | 5f57b9bf-260d-4433-bf07-b6a79e9bb7d4 | 4.1 | 0.17% | 2025-06-23 | 2026-06-17 |
| CVE-2025-48469 | Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload firmware through a public update page, potentially leading to backdoor installation or privilege escalation. | 5f57b9bf-260d-4433-bf07-b6a79e9bb7d4 | 9.6 | 0.42% | 2025-06-23 | 2026-06-17 |
| CVE-2025-48468 | Successful exploitation of the vulnerability could allow an attacker that has physical access to interface with JTAG to inject or modify firmware. | 5f57b9bf-260d-4433-bf07-b6a79e9bb7d4 | 6.4 | 0.16% | 2025-06-23 | 2026-06-17 |
| CVE-2025-48467 | Successful exploitation of the vulnerability could allow an attacker to cause repeated reboots, potentially leading to remote denial-of-service and system unavailability. | 5f57b9bf-260d-4433-bf07-b6a79e9bb7d4 | 6.5 | 0.21% | 2025-06-23 | 2026-06-17 |
| CVE-2025-48466 | Successful exploitation of the vulnerability could allow an unauthenticated, remote attacker to send Modbus TCP packets to manipulate Digital Outputs, potentially allowing remote control of relay channel which may lead to operational or safety risks. | 5f57b9bf-260d-4433-bf07-b6a79e9bb7d4 | 8.1 | 0.51% | 2025-06-23 | 2026-06-17 |
| CVE-2025-48463 | Successful exploitation of the vulnerability could allow an attacker to intercept data and conduct session hijacking on the exposed data as the vulnerable product uses unencrypted HTTP communication, potentially leading to unauthorised access or data tampering. | 5f57b9bf-260d-4433-bf07-b6a79e9bb7d4 | 3.1 | 0.11% | 2025-06-23 | 2026-06-17 |
| CVE-2025-48462 | Successful exploitation of the vulnerability could allow an attacker to consume all available session slots and block other users from logging in, thereby preventing legitimate users from gaining access to the product. | 5f57b9bf-260d-4433-bf07-b6a79e9bb7d4 | 4.2 | 0.17% | 2025-06-23 | 2026-06-17 |
| CVE-2025-48461 | Successful exploitation of the vulnerability could allow an unauthenticated attacker to conduct brute force guessing and account takeover as the session cookies are predictable, potentially allowing the attackers to gain root, admin or user access and reset passwords. | 5f57b9bf-260d-4433-bf07-b6a79e9bb7d4 | 5.0 | 0.43% | 2025-06-23 | 2026-06-17 |
| CVE-2024-50377 | A CWE-798 "Use of Hard-coded Credentials" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G (<= 1.6.3), EKI-6333AC-2GD (<= v1.6.3) and EKI-6333AC-1GPO (<= v1.2.1). The vulnerability is associated to the backup configuration functionality that by default encrypts the archives using a static password. | [email protected] | 6.5 | 0.18% | 2024-11-26 | 2026-06-17 |
| CVE-2024-50376 | A CWE-79 "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G (<= 1.6.3), EKI-6333AC-2GD (<= v1.6.3) and EKI-6333AC-1GPO (<= v1.2.1). The vulnerability can be exploited remotely leveraging a rogue Wi-Fi access point with a malicious SSID. | [email protected] | 7.3 | 0.45% | 2024-11-26 | 2026-06-17 |
| CVE-2024-50375 | A CWE-306 "Missing Authentication for Critical Function" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G (<= 1.6.3), EKI-6333AC-2GD (<= v1.6.3) and EKI-6333AC-1GPO (<= v1.2.1). The vulnerability can be exploited by remote unauthenticated users capable of interacting with the default "edgserver" service enabled on the access point. | [email protected] | 9.8 | 1.01% | 2024-11-26 | 2026-06-17 |
| CVE-2024-50374 | A CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G (<= 1.6.3), EKI-6333AC-2GD (<= v1.6.3) and EKI-6333AC-1GPO (<= v1.2.1). The vulnerability can be exploited by remote unauthenticated users capable of interacting with the default "edgserver" service enabled on the access point and malicious commands are executed with root privileges. No authentication is enab | [email protected] | 9.8 | 1.46% | 2024-11-26 | 2026-06-17 |