Lucene search
K

9 matches found

BDU FSTEC
BDU FSTEC
added 2023/12/22 12:0 a.m.6 views

The vulnerability of the microprogrammed software of Advantech EKI-1524, EKI-1522, and EKI-1521 allows a perpetrator to execute arbitrary codes.

The vulnerability of microprogrammed software in Advantech EKI-1524, EKI-1522, and EKI-1521 industrial switches lies in the ability to write code outside the buffer memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially crafted POST requests...

9CVSS8.3AI score0.15499EPSS
Exploits2References7Affected Software3
BDU FSTEC
BDU FSTEC
added 2023/09/22 12:0 a.m.5 views

The vulnerability of the microprogramming software of Advantech EKI-1524, EKI-1522, and EKI-1521 allows a perpetrator to execute arbitrary commands.

The vulnerability of microprogrammed software in the serial interface servers of Advantech EKI-1524, EKI-1522, and EKI-1521 exists due to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a malicious actor to...

9CVSS7.9AI score0.04751EPSS
Exploits2References7Affected Software3
OSV
OSV
added 2023/08/08 11:15 a.m.5 views

CVE-2023-4203

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, which can be triggered by authenticated users in the ping tool of the web-interface...

5.4CVSS5.8AI score0.00868EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2023/08/08 10:29 a.m.15 views

CVE-2023-4203 Stored Cross-Site Scripting

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, which can be triggered by authenticated users in the ping tool of the web-interface...

9CVSS6.7AI score0.00868EPSS
Exploits2References3
Cvelist
Cvelist
added 2023/08/08 10:29 a.m.63 views

CVE-2023-4203 Stored Cross-Site Scripting

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, which can be triggered by authenticated users in the ping tool of the web-interface...

9CVSS8.1AI score0.00868EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2023/07/17 12:0 a.m.4 views

PT-2023-5481 · Advantech · Eki-1522 +2

Name of the Vulnerable Software and Affected Versions: Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 Description: The issue is related to a Stored Cross-Site Scripting vulnerability. This vulnerability can be triggered by authenticated users in the device name field of the...

9CVSS5.3AI score0.00818EPSS
Exploits2References10
OSV
OSV
added 2023/05/08 1:15 p.m.4 views

CVE-2023-2574

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection vulnerability in the device name input field, which can be triggered by authenticated users via a crafted POST request...

8.8CVSS5.8AI score0.04751EPSS
Exploits2References6
CNNVD
CNNVD
added 2023/05/08 12:0 a.m.6 views

Advantech 命令注入漏洞

Advantech, a China-based Advantech application, provides intelligent electric bus management systems. A security vulnerability exists in Advantech EKI-1524, EKI-1522, EKI-1521 version 1.21 and prior versions, which stems from the discovery of a command injection vulnerability included...

8.8CVSS8AI score0.04751EPSS
Exploits3References8
CNVD
CNVD
added 2021/01/17 12:0 a.m.3 views

Advantech EKI-1524 suffers from a denial of service vulnerability

The EKI-1524 is a serial device networking server. A denial of service vulnerability exists in the Advantech EKI-1524, which can be exploited by an attacker to cause a device to automatically reboot...

6.9AI score
Exploits0
Rows per page
Query Builder