CVE-2026-6888

🗓️ 13 May 2026 03:16:24Reported by CSAType

CVE-2026-6888 enables remote authenticated attacker to execute arbitrary commands through a specific interface and access database data.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2026-6888	13 May 202603:16	–	attackerkb
Circl	CVE-2026-6888	13 May 202605:20	–	circl
CNNVD	Advantech多款产品 SQL注入漏洞	13 May 202600:00	–	cnnvd
Cvelist	CVE-2026-6888 SQL Injection Vulnerability	13 May 202603:16	–	cvelist
EUVD	EUVD-2026-29896	13 May 202618:30	–	euvd
NVD	CVE-2026-6888	13 May 202604:17	–	nvd
Positive Technologies	PT-2026-40556	13 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-6888	5 Jun 202619:17	–	redhatcve
Vulnrichment	CVE-2026-6888 SQL Injection Vulnerability	13 May 202603:16	–	vulnrichment

[
  {
    "vendor": "Advantech",
    "product": "SaaS Composer",
    "versions": [
      {
        "status": "affected",
        "version": "prior to version 3.4.17"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Advantech",
    "product": "IoTSuite Growth Linux docker",
    "versions": [
      {
        "status": "affected",
        "version": "prior to version 2.2.0"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Advantech",
    "product": "IoTSuite Starter Linux docker",
    "versions": [
      {
        "status": "affected",
        "version": "prior to version 2.2.0"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Advantech",
    "product": "IoT Edge Linux docker",
    "versions": [
      {
        "status": "affected",
        "version": "prior to version 2.2.0"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Advantech",
    "product": "IoT Edge Windows",
    "versions": [
      {
        "status": "affected",
        "version": "prior to version 2.2.0"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Advantech",
    "product": "WebAccess/SCADA",
    "versions": [
      {
        "status": "affected",
        "version": "prior to version 9.2.3"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Advantech",
    "product": "WebAccess SaaS-Composer",
    "versions": [
      {
        "status": "affected",
        "version": "prior to version 3.4.17.1"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Advantech",
    "product": "ECOWatch SaaS-Composer",
    "versions": [
      {
        "status": "affected",
        "version": "prior to version 3.4.17"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
csa	www.csa.gov.sg/alerts-and-advisories/alerts/al-2026-050/

17 Jun 2026 11:01Current

6Medium risk

Vulners AI Score6

CVSS 3.17.2

EPSS0.00375

SSVC

CWE-89