Advantech Iview
39 CVEs affecting Advantech Iview. Latest disclosed: 2025-12-04. Critical: 12, High: 19.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-50593 | Critical | 9.8 | 2025-11-06 | Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authent… |
CVE-2022-50591 | Critical | 9.8 | 2025-11-06 | Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authent… |
CVE-2022-2143 | Critical | 9.8 | 2022-07-22 | The affected product is vulnerable to two instances of command injection, which may allow an attacker to remotely execute arbitrary code. |
CVE-2021-32930 | Critical | 9.8 | 2021-06-11 | The affected product’s configuration is vulnerable due to missing authentication, which may allow an attacker to change configurations and execute arbitrary co… |
CVE-2021-22658 | Critical | 9.8 | 2021-02-11 | Advantech iView versions prior to v5.7.03.6112 are vulnerable to a SQL injection, which may allow an attacker to escalate privileges to 'Administrator'. |
CVE-2021-22652 | Critical | 9.8 | 2021-02-11 | Access to the Advantech iView versions prior to v5.7.03.6112 configuration are missing authentication, which may allow an unauthorized attacker to change the c… |
CVE-2020-16245 | Critical | 9.8 | 2020-08-25 | Advantech iView, Versions 5.7 and prior. The affected product is vulnerable to path traversal vulnerabilities that could allow an attacker to create/download a… |
CVE-2020-14503 | Critical | 9.8 | 2020-07-15 | Advantech iView, versions 5.6 and prior, has an improper input validation vulnerability. Successful exploitation of this vulnerability could allow an attacker… |
CVE-2020-14501 | Critical | 9.8 | 2020-07-15 | Advantech iView, versions 5.6 and prior, has an improper authentication for critical function (CWE-306) issue. Successful exploitation of this vulnerability ma… |
CVE-2020-14507 | Critical | 9.8 | 2020-07-15 | Advantech iView, versions 5.6 and prior, is vulnerable to multiple path traversal vulnerabilities that could allow an attacker to create/download arbitrary fil… |
CVE-2020-14505 | Critical | 9.8 | 2020-07-15 | Advantech iView, versions 5.6 and prior, has an improper neutralization of special elements used in a command (“command injection”) vulnerability. Successful e… |
CVE-2020-14497 | Critical | 9.8 | 2020-07-15 | Advantech iView, versions 5.6 and prior, contains multiple SQL injection vulnerabilities that are vulnerable to the use of an attacker-controlled string in the… |
CVE-2025-53515 | High | 8.8 | 2025-07-11 | A vulnerability exists in Advantech iView that allows for SQL injection and remote code execution through NetworkServlet.archiveTrap(). This issue requires a… |
CVE-2025-53475 | High | 8.8 | 2025-07-11 | A vulnerability exists in Advantech iView that could allow for SQL injection and remote code execution through NetworkServlet.getNextTrapPage(). This issue r… |
CVE-2025-52577 | High | 8.8 | 2025-07-11 | A vulnerability exists in Advantech iView that could allow SQL injection and remote code execution through NetworkServlet.archiveTrapRange(). This issue requ… |
CVE-2023-3983 | High | 8.8 | 2023-07-31 | An authenticated SQL injection vulnerability exists in Advantech iView versions prior to v5.7.4 build 6752. An authenticated remote attacker can bypass checks… |
CVE-2022-2136 | High | 8.8 | 2022-07-22 | The affected product is vulnerable to multiple SQL injections that require low privileges for exploitation and may allow an unauthorized attacker to disclose i… |
CVE-2022-2138 | High | 8.2 | 2022-07-22 | The affected product is vulnerable due to missing authentication, which may allow an attacker to read or modify sensitive data and execute arbitrary code, resu… |
CVE-2022-2142 | High | 8.1 | 2022-07-22 | The affected product is vulnerable to a SQL injection with high attack complexity, which may allow an unauthorized attacker to disclose information. |
CVE-2025-48891 | High | 7.6 | 2025-07-11 | A vulnerability exists in Advantech iView that could allow for SQL injection through the CUtils.checkSQLInjection() function. This vulnerability can be explo… |