WebAccess/SCADA, Version 8.3. The software does not properly sanitize its inputs for SQL commands.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HAdvantech Webaccess\/scada
APPAdvantech8.3
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
SQLi
CWE
Related vulnerabilities
CVE-2023-1437CRITICAL9.8ten sam produkt
All versions prior to 9.1.4 of Advantech WebAccess/SCADA are vulnerable to use of untrusted pointers. The RPC ...
CVE-2021-32943CRITICAL9.8ten sam produkt
The affected product is vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely e...
CVE-2019-6519CRITICAL9.8ten sam produkt
WebAccess/SCADA, Version 8.3. An improper authentication vulnerability exists that could allow a possible auth...
CVE-2025-14849HIGH8.7ten sam produkt
Advantech WebAccess/SCADA is vulnerable to unrestricted file upload, which may allow an attacker to remotely ...
CVE-2025-14850HIGH7.2ten sam produkt
Advantech WebAccess/SCADA is vulnerable to directory traversal, which may allow an attacker to delete arbitrar...