Lucene search
K

3731 matches found

Vulnrichment
Vulnrichment
added 2025/12/18 8:30 p.m.6 views

CVE-2025-14850 Advantech WebAccess/SCADA Improper Limitation of a Pathname to a Restricted Directory

Advantech WebAccess/SCADA is vulnerable to directory traversal, which may allow an attacker to delete arbitrary files...

8.1CVSS6.7AI score0.00807EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/18 8:30 p.m.22 views

CVE-2025-14850 Advantech WebAccess/SCADA Improper Limitation of a Pathname to a Restricted Directory

Advantech WebAccess/SCADA is vulnerable to directory traversal, which may allow an attacker to delete arbitrary files...

8.1CVSS0.00807EPSS
Exploits0References3
CVE
CVE
added 2025/12/18 8:30 p.m.24 views

CVE-2025-14850

Affected product: Advantech WebAccess/SCADA. Vulnerability: directory traversal in WebAccess/SCADA that may allow an attacker to delete arbitrary files. Root cause: unrestricted directory traversal path handling as described across multiple sources (CVE-2025-14850). Impact: potential deletion of ...

9.1CVSS6.7AI score0.00807EPSS
Exploits0References3Affected Software1
CISA
CISA
added 2025/12/18 12:0 p.m.33 views

CISA Releases Nine Industrial Control Systems Advisories

CISA released nine Industrial Control Systems ICS Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-352-01 Inductive Automation Ignition ICSA-25-352-02 Schneider Electric EcoStruxure Foxboro DCS Advisor...

6.6AI score
Exploits0References9
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.4 views

Advantech WebAccess/SCADA 安全漏洞

Advantech WebAccess/SCADA is a set of SCADA software based on browser architecture from Advantech, China. The software supports dynamic graphical display and real-time data control, and provides remote control and management of automation equipment. Advantech WebAccess/SCADA suffers from a...

5.3CVSS6AI score0.00558EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.5 views

Advantech WebAccess/SCADA 路径遍历漏洞

Advantech WebAccess/SCADA is a set of SCADA software based on browser architecture from Advantech, China. The software supports dynamic graphical display and real-time data control, and provides remote control and management of automation equipment. Advantech WebAccess/SCADA suffers from a...

7.5CVSS6AI score0.00609EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.3 views

Advantech WebAccess/SCADA 代码问题漏洞

Advantech WebAccess/SCADA is a set of SCADA software based on browser architecture from Advantech, China. The software supports dynamic graphical display and real-time data control, and provides remote control and management of automation equipment. A code issue vulnerability exists in Advantech...

9.8CVSS6.2AI score0.00531EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.4 views

PT-2025-52336

Name of the Vulnerable Software and Affected Versions Advantech WebAccess/SCADA affected versions not specified Description Advantech WebAccess/SCADA is susceptible to a directory traversal issue. This could allow an attacker to delete arbitrary files. Recommendations At the moment, there is no...

8.1CVSS6.5AI score0.00807EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.5 views

PT-2025-52334

Name of the Vulnerable Software and Affected Versions Advantech WebAccess/SCADA affected versions not specified Description Advantech WebAccess/SCADA is susceptible to an absolute directory traversal issue. This flaw could allow an attacker to identify the existence of arbitrary files...

5.3CVSS6.4AI score0.00558EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.5 views

Advantech WebAccess/SCADA SQL注入漏洞

Advantech WebAccess/SCADA is a set of SCADA software based on browser architecture from Advantech, China. The software supports dynamic graphical display and real-time data control, and provides remote control and management of automation equipment. An SQL injection vulnerability exists in...

8.8CVSS6.2AI score0.0028EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.7 views

PT-2025-52335

Name of the Vulnerable Software and Affected Versions Advantech WebAccess/SCADA affected versions not specified Description Advantech WebAccess/SCADA is susceptible to a file upload issue that does not have restrictions. This could allow a remote attacker to execute code. The issue may allow for...

8.8CVSS7.3AI score0.00531EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.4 views

Advantech WebAccess/SCADA 路径遍历漏洞

Advantech WebAccess/SCADA is a set of SCADA software based on browser architecture from Advantech, China. The software supports dynamic graphical display and real-time data control, and provides remote control and management of automation equipment. A directory traversal vulnerability exists in...

9.1CVSS6AI score0.00807EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/17 8:7 a.m.6 views

CVE-2025-14252

An Improper Access Control vulnerability in Advantech SUSI driver susi.sys allows attackers to read/write arbitrary memory, I/O ports, and MSRs, resulting in privilege escalation, arbitrary code execution, and information disclosure. This issue affects Advantech SUSI: 5.0.24335 and prior...

8.5CVSS7.3AI score0.00111EPSS
Exploits0References1
NVD
NVD
added 2025/12/16 6:15 a.m.5 views

CVE-2025-14252

An Improper Access Control vulnerability in Advantech SUSI driver susi.sys allows attackers to read/write arbitrary memory, I/O ports, and MSRs, resulting in privilege escalation, arbitrary code execution, and information disclosure. This issue affects Advantech SUSI: 5.0.24335 and prior...

8.5CVSS0.00111EPSS
Exploits0References1
CVE
CVE
added 2025/12/16 5:19 a.m.12 views

CVE-2025-14252

Summary of CVE-2025-14252 (Advantech SUSI SUSI.sys) : An Improper Access Control vulnerability exists in the Advantech SUSI driver (susi.sys), affecting versions up to and including 5.0.24335. The issue allows an attacker with local access to read/write arbitrary memory, I/O ports, and MSRs, enab...

8.5CVSS6.9AI score0.00111EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/16 5:19 a.m.5 views

EUVD-2025-203500

An Improper Access Control vulnerability in Advantech SUSI driver susi.sys allows attackers to read/write arbitrary memory, I/O ports, and MSRs, resulting in privilege escalation, arbitrary code execution, and information disclosure. This issue affects Advantech SUSI: 5.0.24335 and prior...

8.5CVSS6.8AI score0.00111EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/16 5:19 a.m.2 views

CVE-2025-14252

An Improper Access Control vulnerability in Advantech SUSI driver susi.sys allows attackers to read/write arbitrary memory, I/O ports, and MSRs, resulting in privilege escalation, arbitrary code execution, and information disclosure. This issue affects Advantech SUSI: 5.0.24335 and prior...

8.5CVSS6.9AI score0.00111EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/16 5:19 a.m.29 views

CVE-2025-14252

An Improper Access Control vulnerability in Advantech SUSI driver susi.sys allows attackers to read/write arbitrary memory, I/O ports, and MSRs, resulting in privilege escalation, arbitrary code execution, and information disclosure. This issue affects Advantech SUSI: 5.0.24335 and prior...

8.5CVSS0.00111EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.5 views

PT-2025-51373

Name of the Vulnerable Software and Affected Versions Advantech SUSI versions 5.0.24335 and prior Description An Improper Access Control issue exists in the Advantech SUSI driver susi.sys. This allows attackers to read and write to arbitrary memory locations, I/O ports, and Model Specific Registe...

8.5CVSS6.9AI score0.00111EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/12/16 12:0 a.m.5 views

Advantech SUSI 安全漏洞

Advantech SUSI is a set of embedded system interface management tools from Advantech, Taiwan, China. A security vulnerability exists in Advantech SUSI 5.0.24335 and prior versions, which stems from improper access control and could lead to elevation of privilege and arbitrary code execution...

8.5CVSS7.8AI score0.00111EPSS
Exploits0References1
Rows per page
Query Builder