Home
MEDIUM: 6.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:LMEDIUM: 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:NDefault status
unaffected
9.2.1
affected
Description
Advantech WebAccess/SCADA is vulnerable to SQL injection, which may allow an attacker to execute arbitrary SQL commands.
Problem types
Product status
9.2.1
Credits
Alex Wiliams from Pellera Technologies reported these vulnerabilities to CISA.
References
www.advantech.com/...upport/details/installation?id=1-MS9MJV
www.cisa.gov/news-events/ics-advisories/icsa-25-352-06
github.com/...p/csaf_files/OT/white/2025/icsa-25-352-06.json
Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.
