CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

449 matches found

Vulnrichment•added 2025/11/06 7:57 p.m.•4 views

CVE-2022-50592 Advantech iView < v5.7.04 Build 6425 getInventoryReportData Parameter SQL Injection RCE

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘getInventoryReportData’ parameter to the ‘NetworkServlet’ endpoint...

9.3CVSS8.8AI score0.00583EPSS

Exploits0References3

Vulnrichment•added 2025/11/06 7:57 p.m.•3 views

CVE-2022-50594 Advantech iView < v5.7.04 Build 6425 data Parameter SQL Injection Information Disclosure

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘data’ parameter to the ‘NetworkServlet’ endpoint. Successful exploitati...

8.8CVSS7.8AI score0.00423EPSS

Exploits0References3

Cvelist•added 2025/11/06 7:57 p.m.•5 views

CVE-2022-50594 Advantech iView < v5.7.04 Build 6425 data Parameter SQL Injection Information Disclosure

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘data’ parameter to the ‘NetworkServlet’ endpoint. Successful exploitati...

8.8CVSS0.00423EPSS

Exploits0References3

CVE•added 2025/11/06 7:57 p.m.•13 views

CVE-2022-50594

Advantech iView is affected: versions prior to v5.7.04 build 6425. The issue arises from a lack of validation in the data parameter of the NetworkServlet endpoint, enabling a SQL injection via the SNMP management tool. Remote attackers can bypass authentication and exploit this to disclose data, ...

8.8CVSS7.8AI score0.00423EPSS

Exploits0References3Affected Software1

CNNVD•added 2025/11/06 12:0 a.m.•5 views

Advantech iView 安全漏洞

Advantech iView is a software developed by Advantech for managing B+BSmartWorx series devices through a simple network management protocol. Advantech iView suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter...

8.8CVSS8AI score0.00423EPSS

Exploits0References3

Positive Technologies•added 2025/11/06 12:0 a.m.•4 views

PT-2025-45367

9.3CVSS9.2AI score0.00583EPSS

Exploits0References4

Positive Technologies•added 2025/11/06 12:0 a.m.•7 views

PT-2025-45369

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘data’ parameter to the ‘NetworkServlet’ endpoint. Successful exploitati...

8.8CVSS8.2AI score0.00423EPSS

Exploits0References4

Positive Technologies•added 2025/11/06 12:0 a.m.•5 views

PT-2025-45370

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘ztp search value’ parameter to the ‘NetworkServlet’ endpoint. Successfu...

9.3CVSS9.2AI score0.00583EPSS

Exploits0References4

Positive Technologies•added 2025/11/06 12:0 a.m.•6 views

PT-2025-45368

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘search term’ parameter to the ‘NetworkServlet’ endpoint. Successful...

9.3CVSS9.2AI score0.00636EPSS

Exploits0References4

CNNVD•added 2025/11/06 12:0 a.m.•4 views

Advantech iView 安全漏洞

Advantech iView is a software developed by Advantech for managing B+BSmartWorx series devices through a simple network management protocol. Advantech iView suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the searchterm...

9.8CVSS8.7AI score0.00636EPSS

Exploits0References3

CNNVD•added 2025/11/06 12:0 a.m.•4 views

Advantech iView 安全漏洞

Advantech iView is a software developed by Advantech for managing B+BSmartWorx series devices through a simple network management protocol. Advantech iView suffers from a SQL injection vulnerability that originates from an authentication bypass of the ztpconfigid parameter of the NetworkServlet...

9.8CVSS8AI score0.00459EPSS

Exploits0References3

CNNVD•added 2025/11/06 12:0 a.m.•6 views

Advantech iView 安全漏洞

Advantech iView is a software developed by Advantech for managing B+BSmartWorx series devices through a simple network management protocol. Advantech iView suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the ztpsearchvalue...

9.3CVSS8.7AI score0.00583EPSS

Exploits0References3

CNNVD•added 2025/11/06 12:0 a.m.•4 views

Advantech iView 安全漏洞

Advantech iView is a software developed by Advantech for managing B+BSmartWorx series devices through a simple network management protocol. Advantech iView suffers from a SQL injection vulnerability that originates from an authentication bypass in the getInventoryReportData parameter of the...

9.3CVSS8.8AI score0.00583EPSS

Exploits0References3

Positive Technologies•added 2025/11/06 12:0 a.m.•6 views

PT-2025-45366

Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘ztp config id’ parameter to the ‘NetworkServlet’ endpoint. Successful...

8.8CVSS8.2AI score0.00459EPSS

Exploits0References4