Lucene search
K

259 matches found

Positive Technologies
Positive Technologies
added 2023/06/22 12:0 a.m.5 views

PT-2023-3302 · Advantech · Advantech R-Seenet

Name of the Vulnerable Software and Affected Versions: Advantech R-SeeNet version 2.4.22 Description: The issue is related to the use of hard-coded credentials in Advantech R-SeeNet. This allows a remote attacker to exploit the vulnerability and gain elevated privileges. The software comes with a...

9.8CVSS9.4AI score0.00668EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/06/22 12:0 a.m.6 views

Advantech R-SeeNet 信任管理问题漏洞

Advantech R-SeeNet is an industrial monitoring software from Advantech, China. A security vulnerability exists in Advantech R-SeeNet, which can be exploited by an authenticated, remote attacker to submit a special request for unauthorized access to the system...

9.8CVSS6.8AI score0.00668EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/06/22 12:0 a.m.3 views

Advantech R-SeeNet 安全漏洞

Advantech R-SeeNet is an industrial monitoring software from Advantech, China. The software is based on the snmp protocol for monitoring platforms and is available for Linux and Windows platforms. A security vulnerability exists in Advantech R-SeeNet version 2.4.22, which allows a low-level user ...

8.8CVSS7.7AI score0.00647EPSS
Exploits0References2
ICS
ICS
added 2023/06/20 6:0 a.m.36 views

Advantech R-SeeNet

1. EXECUTIVE SUMMARY ​CVSS v3 9.8 ​ATTENTION: Exploitable remotely/low attack complexity ​Vendor: Advantech ​Equipment: R-SeeNet ​Vulnerability: Hard Coded Password, External Control of File Name or Path 2. RISK EVALUATION ​Successful exploitation of these vulnerabilities could allow an attacker...

9.8CVSS9.7AI score0.00668EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2022/12/28 12:0 a.m.9 views

The vulnerability of the monitoring software for the status and functions of Advantech R-SeeNet routers lies in the fact that it allows unauthorized code to be executed or service failures to be caused by allowing operations to occur outside the buffer boundaries.

The vulnerability of the monitoring software for the status and functions of Advantech R-SeeNet routers lies in the execution of operations outside the buffer boundaries. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause service failures...

10CVSS8.8AI score0.01202EPSS
Exploits0References4Affected Software1
Check Point Advisories
Check Point Advisories
added 2022/11/24 12:0 a.m.8 views

Advantech R-SeeNet SQL Injection (CVE-2021-21924)

An SQL injection vulnerability exists in Advantech R-SeeNet. The vulnerability is due to improper input. A successful attack may result in arbitrary SQL command execution against the database on the target server...

4CVSS3.8AI score0.20155EPSS
Exploits1
NVD
NVD
added 2022/10/27 9:15 p.m.24 views

CVE-2022-3387

Advantech R-SeeNet Versions 2.4.19 and prior are vulnerable to path traversal attacks. An unauthorized attacker could remotely exploit vulnerable PHP code to delete .PDF files...

6.5CVSS0.1398EPSS
Exploits0References1
NVD
NVD
added 2022/10/27 9:15 p.m.19 views

CVE-2022-3385

Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An unauthorized attacker can remotely overflow the stack buffer and enable remote code execution...

9.8CVSS0.01202EPSS
Exploits0References1
OSV
OSV
added 2022/10/27 9:15 p.m.4 views

CVE-2022-3385

Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An unauthorized attacker can remotely overflow the stack buffer and enable remote code execution...

9.8CVSS6.4AI score0.01202EPSS
Exploits0References1
NVD
NVD
added 2022/10/27 9:15 p.m.22 views

CVE-2022-3386

Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An unauthorized attacker can use an outsized filename to overflow the stack buffer and enable remote code execution...

9.8CVSS0.01202EPSS
Exploits0References1
Prion
Prion
added 2022/10/27 9:15 p.m.20 views

Path traversal

Advantech R-SeeNet Versions 2.4.19 and prior are vulnerable to path traversal attacks. An unauthorized attacker could remotely exploit vulnerable PHP code to delete .PDF files...

5CVSS5.8AI score0.1398EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/10/27 9:15 p.m.27 views

Stack overflow

Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An unauthorized attacker can use an outsized filename to overflow the stack buffer and enable remote code execution...

7.5CVSS9.8AI score0.01202EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/10/27 9:15 p.m.20 views

Stack overflow

Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An unauthorized attacker can remotely overflow the stack buffer and enable remote code execution...

7.5CVSS9.8AI score0.01202EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/27 8:47 p.m.7 views

CVE-2022-3387

Advantech R-SeeNet Versions 2.4.19 and prior are vulnerable to path traversal attacks. An unauthorized attacker could remotely exploit vulnerable PHP code to delete .PDF files...

6.5CVSS6.6AI score0.1398EPSS
Exploits0References1
CVE
CVE
added 2022/10/27 8:47 p.m.75 views

CVE-2022-3387

Advantech R-SeeNet (software management platform) Versions 2.4.19 and earlier are affected by CVE-2022-3387 due to an improper restriction of a pathname (path traversal). An unauthorized, remote attacker could exploit vulnerable PHP code to delete arbitrary .PDF files. The issue is documented wit...

6.5CVSS5.3AI score0.1398EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/10/27 8:34 p.m.72 views

CVE-2022-3386

CVE-2022-3386 affects Advantech R-SeeNet; versions 2.4.17 and earlier are vulnerable to a stack-based buffer overflow triggered by an outsized filename, enabling remote code execution. Exploitation is possible remotely (no authentication required per ZDI advisory) with high impact (CVE-2022-3386,...

9.8CVSS9.8AI score0.01202EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/10/27 8:34 p.m.26 views

CVE-2022-3386

Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An unauthorized attacker can use an outsized filename to overflow the stack buffer and enable remote code execution...

9.8CVSS10AI score0.01202EPSS
Exploits0References1
CVE
CVE
added 2022/10/27 8:16 p.m.70 views

CVE-2022-3385

CVE-2022-3385 affects Advantech R-SeeNet, specifically versions 2.4.17 and prior. The vulnerability is a stack-based buffer overflow that an unauthenticated, remotely located attacker could exploit over the network to achieve remote code execution. Impact is high (CVE-2022-3385 base 9.8). Mitigat...

9.8CVSS9.7AI score0.01202EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/10/27 8:16 p.m.26 views

CVE-2022-3385

Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An unauthorized attacker can remotely overflow the stack buffer and enable remote code execution...

9.8CVSS9.9AI score0.01202EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/10/27 12:0 a.m.5 views

Advantech R-SeeNet 路径遍历漏洞

Advantech R-SeeNet is an industrial monitoring software from Advantech China. The software is based on the snmp protocol for monitoring platforms and is available for Linux and Windows platforms.Advantech R-SeeNet has a directory traversal vulnerability, which can be exploited by unauthorized...

6.5CVSS6.8AI score0.1398EPSS
Exploits0References2
Rows per page
Query Builder