Описание
Advantech iView versions prior to v5.7.03.6112 are vulnerable to a SQL injection, which may allow an attacker to escalate privileges to 'Administrator'.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 5.7.03.6112 (исключая)
cpe:2.3:a:advantech:iview:*:*:*:*:*:*:*:*
EPSS
Процентиль: 55%
0.00325
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-89
CWE-89
Связанные уязвимости
github
больше 3 лет назад
Advantech iView versions prior to v5.7.03.6112 are vulnerable to a SQL injection, which may allow an attacker to escalate privileges to 'Administrator'.
EPSS
Процентиль: 55%
0.00325
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-89
CWE-89