5 matches found
CVE-2025-58423
Due to insufficient sanitization, an attacker can upload a specially crafted configuration file to cause a denial-of-service condition, traverse directories, or read/write files, within the context of the local system account...
CVE-2025-59171
Due to insufficient sanitization, an attacker can upload a specially crafted configuration file to traverse directories and achieve remote code execution with system-level permissions...
CVE-2025-62630
Due to insufficient sanitization, an attacker can upload a specially crafted configuration file to traverse directories and achieve remote code execution with system-level permissions...
CVE-2025-58423
Due to insufficient sanitization, an attacker can upload a specially crafted configuration file to cause a denial-of-service condition, traverse directories, or read/write files, within the context of the local system account...
CVE-2025-59171
CVE-2025-59171 affects Advantech DeviceOn/iEdge. The issue is caused by insufficient sanitization in the dashboard label or path, allowing an attacker to upload a specially crafted configuration file to traverse directories and achieve remote code execution with system-level permissions. Public s...