Lucene search
K

147 matches found

CNNVD
CNNVD
added 2025/11/06 12:0 a.m.5 views

Advantech DeviceOn/iEdge 路径遍历漏洞

Advantech DeviceOn/iEdge is an edge device remote management and operation and maintenance platform from Advantech, Taiwan, China. A path traversal vulnerability exists in Advantech DeviceOn/iEdge, which can be exploited by an attacker to read arbitrary files or bypass authentication...

9.8CVSS5.9AI score0.00695EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/11/06 12:0 a.m.5 views

Advantech DeviceOn/iEdge 路径遍历漏洞

Advantech DeviceOn/iEdge is a remote management and operation and maintenance platform for edge devices from Advantech, Taiwan, China. Advantech DeviceOn/iEdge suffers from a path traversal vulnerability that can be exploited by an attacker to upload a specially crafted configuration file for...

9.8CVSS6.2AI score0.00661EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-27566

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.00365EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-27573

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.00365EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/06 4:10 a.m.6 views

CVE-2021-40396

A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iService 1.1.7. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability...

8.8CVSS7.2AI score0.00365EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/02/06 4:10 a.m.7 views

CVE-2021-40389

A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iEdge Server 1.0.2. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability...

8.8CVSS7.2AI score0.00365EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2022/08/04 12:0 a.m.8 views

The vulnerability of the Advantech DeviceOn/iEdge Server software lies in improper default access rights settings, which allow attackers to escalate their privileges.

The vulnerability of the Advantech DeviceOn/iEdge Server software is related to incorrect default access permissions settings. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created file...

8.8CVSS7.6AI score0.00365EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/04 12:0 a.m.9 views

The vulnerability of the Advantech DeviceOn/iService software lies in improper default access rights settings, which allow attackers to escalate their privileges.

The vulnerability of the Advantech DeviceOn/iService software is related to incorrect default access rights settings. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created file...

8.8CVSS7.6AI score0.00365EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2022/01/28 8:15 p.m.3 views

CVE-2021-40396

A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iService 1.1.7. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability...

8.8CVSS5.8AI score0.00365EPSS
Exploits1References1
NVD
NVD
added 2022/01/28 8:15 p.m.9 views

CVE-2021-40396

A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iService 1.1.7. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability...

8.8CVSS0.00365EPSS
Exploits1References1
NVD
NVD
added 2022/01/28 8:15 p.m.11 views

CVE-2021-40389

A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iEdge Server 1.0.2. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability...

8.8CVSS0.00365EPSS
Exploits1References1
OSV
OSV
added 2022/01/28 8:15 p.m.4 views

CVE-2021-40389

A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iEdge Server 1.0.2. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability...

8.8CVSS5.8AI score0.00365EPSS
Exploits1References1
Prion
Prion
added 2022/01/28 8:15 p.m.13 views

Privilege escalation

A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iEdge Server 1.0.2. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability...

7.2CVSS8.9AI score0.00365EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/01/28 8:15 p.m.13 views

Privilege escalation

A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iService 1.1.7. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability...

7.2CVSS8.9AI score0.00365EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/01/28 7:9 p.m.52 views

CVE-2021-40396

Advantech DeviceOn/iService 1.1.7 is affected by a privilege-escalation flaw from overly-permissive installation directory permissions. According to TALOS-2021-1408, the Server binaries in c:\Program Files\Advantech\WISE-DeviceOn\database\PostgreSQL\pgsql\bin\ (psql.exe, pg_ctl.exe, postgres.exe)...

8.8CVSS8.9AI score0.00365EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/01/28 7:9 p.m.14 views

CVE-2021-40396

A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iService 1.1.7. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability...

8.8CVSS9.2AI score0.00365EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/01/28 7:9 p.m.5 views

CVE-2021-40396

A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iService 1.1.7. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability...

8.8CVSS9.1AI score0.00365EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/01/28 7:9 p.m.18 views

CVE-2021-40389

A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iEdge Server 1.0.2. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability...

8.8CVSS9.1AI score0.00365EPSS
Exploits1References1
CVE
CVE
added 2022/01/28 7:9 p.m.52 views

CVE-2021-40389

CVE-2021-40389 affects Advantech DeviceOn/iEdge Server 1.0.2. The vulnerability (CWE-276: Incorrect Default Permissions) arises from default permissions in the installation folder (e.g., c:\Program Files\Advantech\…) that let the Everyone group have full control over critical service binaries. An...

8.8CVSS8.9AI score0.00365EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/01/28 7:9 p.m.5 views

CVE-2021-40389

A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iEdge Server 1.0.2. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger this vulnerability...

8.8CVSS9.1AI score0.00365EPSS
Exploits1References1
Rows per page
Query Builder