Lucene search
K

449 matches found

RedhatCVE
RedhatCVE
added 2025/11/07 7:58 p.m.6 views

CVE-2022-50594

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘data’ parameter to the ‘NetworkServlet’ endpoint. Successful exploitati...

8.8CVSS8.2AI score0.00463EPSS
Exploits0References1
OSV
OSV
added 2025/11/06 8:15 p.m.4 views

CVE-2022-50595

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘ztpsearchvalue’ parameter to the ‘NetworkServlet’ endpoint. Successful...

7.2CVSS6.4AI score0.00638EPSS
Exploits0References3
NVD
NVD
added 2025/11/06 8:15 p.m.6 views

CVE-2022-50595

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘ztpsearchvalue’ parameter to the ‘NetworkServlet’ endpoint. Successful...

9.3CVSS0.00638EPSS
Exploits0References3
NVD
NVD
added 2025/11/06 8:15 p.m.6 views

CVE-2022-50591

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘ztpconfigid’ parameter to the ‘NetworkServlet’ endpoint. Successful...

9.8CVSS0.00502EPSS
Exploits0References3
OSV
OSV
added 2025/11/06 8:15 p.m.3 views

CVE-2022-50594

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘data’ parameter to the ‘NetworkServlet’ endpoint. Successful exploitati...

7.5CVSS5.9AI score0.00463EPSS
Exploits0References3
OSV
OSV
added 2025/11/06 8:15 p.m.5 views

CVE-2022-50593

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘searchterm’ parameter to the ‘NetworkServlet’ endpoint. Successful...

9.8CVSS6.4AI score0.00695EPSS
Exploits0References3
OSV
OSV
added 2025/11/06 8:15 p.m.5 views

CVE-2022-50592

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘getInventoryReportData’ parameter to the ‘NetworkServlet’ endpoint...

7.2CVSS6.4AI score0.00638EPSS
Exploits0References3
NVD
NVD
added 2025/11/06 8:15 p.m.5 views

CVE-2022-50593

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘searchterm’ parameter to the ‘NetworkServlet’ endpoint. Successful...

9.8CVSS0.00695EPSS
Exploits0References3
NVD
NVD
added 2025/11/06 8:15 p.m.5 views

CVE-2022-50594

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘data’ parameter to the ‘NetworkServlet’ endpoint. Successful exploitati...

8.8CVSS0.00463EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/06 7:58 p.m.5 views

CVE-2022-50595 Advantech iView < v5.7.04 Build 6425 ztp_search_value Parameter SQL Injection RCE

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘ztpsearchvalue’ parameter to the ‘NetworkServlet’ endpoint. Successful...

9.3CVSS0.00638EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/06 7:58 p.m.3 views

CVE-2022-50595 Advantech iView < v5.7.04 Build 6425 ztp_search_value Parameter SQL Injection RCE

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘ztpsearchvalue’ parameter to the ‘NetworkServlet’ endpoint. Successful...

9.3CVSS8.8AI score0.00638EPSS
Exploits0References3
CVE
CVE
added 2025/11/06 7:58 p.m.17 views

CVE-2022-50595

Advantech iView prior to v5.7.04 build 6425 is affected. The SNMP management tool exposes a SQL injection in the ztp_search_value parameter of the NetworkServlet, enabling remote attackers to bypass authentication and achieve remote code execution with administrator privileges. Root cause cited a...

9.3CVSS8.8AI score0.00638EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/06 7:58 p.m.3 views

CVE-2022-50591 Advantech iView < v5.7.04 Build 6425 ztp_config_id Parameter SQL Injection Information Disclosure

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘ztpconfigid’ parameter to the ‘NetworkServlet’ endpoint. Successful...

8.8CVSS7.8AI score0.00502EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/06 7:58 p.m.7 views

CVE-2022-50591 Advantech iView < v5.7.04 Build 6425 ztp_config_id Parameter SQL Injection Information Disclosure

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘ztpconfigid’ parameter to the ‘NetworkServlet’ endpoint. Successful...

8.8CVSS0.00502EPSS
Exploits0References3
CVE
CVE
added 2025/11/06 7:58 p.m.18 views

CVE-2022-50591

Advantech iView prior to version v5.7.04 build 6425 contains a vulnerability in the SNMP management tool that lets remote attackers bypass authentication and perform a SQL injection in the ztp_config_id parameter of the NetworkServlet endpoint. Successful exploitation can lead to exfiltration of ...

9.8CVSS7.8AI score0.00502EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2025/11/06 7:57 p.m.16 views

CVE-2022-50593

Advantech iView prior to v5.7.04 build 6425 exposes a SQL injection in the NetworkServlet search_term parameter (via SNMP management tool) that can lead to remote code execution with administrator privileges. Root cause appears to be unsanitized input allowing SQL statements to reach the backend....

9.8CVSS8.8AI score0.00695EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/11/06 7:57 p.m.10 views

CVE-2022-50593 Advantech iView < v5.7.04 Build 6425 search_term Parameter SQL Injection RCE

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘searchterm’ parameter to the ‘NetworkServlet’ endpoint. Successful...

9.3CVSS0.00695EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/06 7:57 p.m.2 views

CVE-2022-50593 Advantech iView < v5.7.04 Build 6425 search_term Parameter SQL Injection RCE

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘searchterm’ parameter to the ‘NetworkServlet’ endpoint. Successful...

9.3CVSS8.8AI score0.00695EPSS
Exploits0References3
CVE
CVE
added 2025/11/06 7:57 p.m.13 views

CVE-2022-50592

CVE-2022-50592 affects Advantech iView prior to v5.7.04 build 6425. The SNMP management tool contains an authentication bypass that enables a SQL injection in the getInventoryReportData parameter of the NetworkServlet endpoint, leading to remote code execution with administrator privileges. This ...

9.3CVSS8.8AI score0.00638EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/11/06 7:57 p.m.6 views

CVE-2022-50592 Advantech iView < v5.7.04 Build 6425 getInventoryReportData Parameter SQL Injection RCE

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘getInventoryReportData’ parameter to the ‘NetworkServlet’ endpoint...

9.3CVSS0.00638EPSS
Exploits0References3
Rows per page
Query Builder