Known Vulnerabilities for products from Advantech
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Advantech".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Advantech can be found at device.report : Advantech
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-34256 json | Advantech WISE-DeviceOn Server versions prior to 5.4 contain a hard-coded cryptographic key vulnerability. The product uses ... | Not Provided | 2025-12-05 | 2026-04-15 |
| CVE-2023-32628 json | In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file upload vulnerability that could allow an attack... | 9.8 - CRITICAL | 2023-06-06 | 2023-06-12 |
| CVE-2023-32540 json | In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file overwrite vulnerability, which could allow an attac... | 9.8 - CRITICAL | 2023-06-06 | 2023-06-12 |
| CVE-2023-22450 json | In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file upload vulnerability that could allow an attacker... | 7.2 - HIGH | 2023-06-06 | 2023-06-12 |
| CVE-2023-5642 json | Advantech R-SeeNet v2.4.23 allows an unauthenticated remote attacker to read from and write to the snmpmon.ini file, which co... | 9.8 - CRITICAL | 2023-10-18 | 2023-10-25 |
| CVE-2023-4215 json | Advantech WebAccess version 9.1.3 contains an exposure of sensitive information to an unauthorized actor vulnerability that c... | 7.5 - HIGH | 2023-10-17 | 2023-10-20 |
| CVE-2023-4203 json | Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, whic... | 5.4 - MEDIUM | 2023-08-08 | 2023-08-14 |
| CVE-2023-4202 json | Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, whic... | 5.4 - MEDIUM | 2023-08-08 | 2023-08-14 |
| CVE-2023-3983 json | An authenticated SQL injection vulnerability exists in Advantech iView versions prior to v5.7.4 build 6752. An authenticated ... | 8.8 - HIGH | 2023-07-31 | 2023-08-04 |
| CVE-2023-3256 json | Advantech R-SeeNet versions 2.4.22 allows low-level users to access and load the content of local files. | 8.1 - HIGH | 2023-06-22 | 2023-06-28 |
| CVE-2023-2866 json | If an attacker can trick an authenticated user into loading a maliciously crafted .zip file onto Advantech WebAccess version... | 7.8 - HIGH | 2023-06-07 | 2023-06-15 |
| CVE-2023-2611 json | Advantech R-SeeNet versions 2.4.22 is installed with a hidden root-level user that is not available in the users list. Th... | 9.8 - CRITICAL | 2023-06-22 | 2023-06-28 |
| CVE-2023-2575 json | Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stack-based Buffer Overflow vulnerability, whi... | 8.8 - HIGH | 2023-05-08 | 2023-05-12 |
| CVE-2023-2574 json | Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection vulnerability in the device ... | 8.8 - HIGH | 2023-05-08 | 2023-05-12 |
| CVE-2023-2573 json | Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection vulnerability in the NTP ser... | 8.8 - HIGH | 2023-05-08 | 2023-05-12 |
| CVE-2023-1437 json | All versions prior to 9.1.4 of Advantech WebAccess/SCADA are vulnerable to use of untrusted pointers. The RPC arguments the c... | 9.8 - CRITICAL | 2023-08-02 | 2024-02-01 |
| CVE-2022-22987 json | The affected product has a hardcoded private key available inside the project folder, which may allow an attacker to achieve ... | 9.8 - CRITICAL | 2022-02-04 | 2022-02-09 |
| CVE-2022-3387 json | Advantech R-SeeNet Versions 2.4.19 and prior are vulnerable to path traversal attacks. An unauthorized attacker could remotel... | 5.3 - MEDIUM | 2022-10-27 | 2023-11-07 |
| CVE-2022-3386 json | Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An unauthorized attacker can us... | 9.8 - CRITICAL | 2022-10-27 | 2023-11-07 |
| CVE-2022-3385 json | Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An unauthorized attacker can re... | 9.8 - CRITICAL | 2022-10-27 | 2023-11-07 |
Known software with vulnerabilities from Advantech
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Advantech | Adamview | 4.3 |
| Application | Advantech | Advantech Webaccess | 5.0 |
| Application | Advantech | Diaganywhere | - |
| Operating System | Advantech | Eki-122x Series Firmware | 1.49 |
| Hardware | Advantech | Eki-1321 | - |
| Operating System | Advantech | Eki-1321 Series Firmware | 1.96 |
| Hardware | Advantech | Eki-1322 | - |
| Operating System | Advantech | Eki-1322 Series Firmware | 1.96 |
| Hardware | Advantech | Eki-1361 | - |
| Operating System | Advantech | Eki-1361 Series Firmware | 1.17 |
| Hardware | Advantech | Eki-1362 | - |
| Operating System | Advantech | Eki-1362 Series Firmware | 1.17 |
| Application | Advantech | Iview | 5.6 |
| Application | Advantech | R-seenet | 1.5.1 |
| Application | Advantech | Susiaccess | 3.0 |
| Hardware | Advantech | Vesp211-232 | - |
| Operating System | Advantech | Vesp211-232 Firmware | 1.5.1 |
| Hardware | Advantech | Vesp211-eu | - |
| Operating System | Advantech | Vesp211-eu Firmware | 1.7.2 |
| Application | Advantech | Webaccess | 6.0 |