Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
AdvantechR-seenet

10 matches found

CVE
CVEadded 2021/07/16 11:15 a.m.87 views

CVE-2021-21799

Cross-site scripting vulnerabilities exist in the telnet_form.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020). If a user visits a specially crafted URL, it can lead to arbitrary JavaScript code execution in the context of the targeted user’s browser. An attacker can provide a c...

9.6CVSS6.4AI score0.75981EPSS
CVE
CVEadded 2021/07/16 11:15 a.m.75 views

CVE-2021-21801

This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications. A specially crafted URL by an attacker and visited by a victim can lead to arbitrary JavaScript code execution.

9.6CVSS6.4AI score0.85223EPSS
CVE
CVEadded 2021/07/16 11:15 a.m.71 views

CVE-2021-21803

This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications. A specially crafted URL by an attacker and visited by a victim can lead to arbitrary JavaScript code execution.

9.6CVSS6.4AI score0.77207EPSS
CVE
CVEadded 2021/07/16 11:15 a.m.61 views

CVE-2021-21800

Cross-site scripting vulnerabilities exist in the ssh_form.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020). If a user visits a specially crafted URL, it can lead to arbitrary JavaScript code execution in the context of the targeted user’s browser. An attacker can provide a craf...

9.6CVSS6.4AI score0.72461EPSS
CVE
CVEadded 2022/10/27 9:15 p.m.58 views

CVE-2022-3385

Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An unauthorized attacker can remotely overflow the stack buffer and enable remote code execution.

9.8CVSS9.7AI score0.013EPSS
CVE
CVEadded 2021/07/16 11:15 a.m.57 views

CVE-2021-21802

This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications. A specially crafted URL by an attacker and visited by a victim can lead to arbitrary JavaScript code execution.

9.6CVSS6.4AI score0.79333EPSS
CVE
CVEadded 2022/10/27 9:15 p.m.56 views

CVE-2022-3386

Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An unauthorized attacker can use an outsized filename to overflow the stack buffer and enable remote code execution.

9.8CVSS9.8AI score0.013EPSS
CVE
CVEadded 2023/10/18 4:15 p.m.49 views

CVE-2023-5642

Advantech R-SeeNet v2.4.23 allows an unauthenticated remote attacker to read from and write to the snmpmon.ini file, which contains sensitive information.

9.8CVSS9.5AI score0.01021EPSS
CVE
CVEadded 2023/06/22 5:15 p.m.48 views

CVE-2023-2611

Advantech R-SeeNetversions 2.4.22 is installed with a hidden root-level user that is not available in theusers list. This hidden user has a password that cannot be changed byusers.

9.8CVSS9.6AI score0.00082EPSS
CVE
CVEadded 2021/07/16 11:15 a.m.46 views

CVE-2021-21804

A local file inclusion (LFI) vulnerability exists in the options.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020). A specially crafted HTTP request can lead to arbitrary PHP code execution. An attacker can send a crafted HTTP request to trigger this vulnerability.

9.8CVSS9.3AI score0.27808EPSS