| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-2670 | Advantech WISE-6610 Background Management openvpn_apply os command injection | Advantech | WISE-6610 | High | 7.2 | 2026-02-18 21:02:08 | Deep Dive |
| CVE-2025-52694 | Execution of arbitrary SQL commands | Advantech | IoTSuite and IoT Edge Products | Critical | 10.0 | 2026-01-12 02:27:17 | Deep Dive |
| CVE-2025-67653 | Advantech WebAccess/SCADA Path Traversal | Advantech | WebAccess/SCADA | Medium | 4.3 | 2025-12-18 20:38:13 | Deep Dive |
| CVE-2025-46268 | Advantech WebAccess/SCADA SQL Injection | Advantech | WebAccess/SCADA | Medium | 6.3 | 2025-12-18 20:35:37 | Deep Dive |
| CVE-2025-14848 | Advantech WebAccess/SCADA Absolute Path Traversal | Advantech | WebAccess/SCADA | Medium | 4.3 | 2025-12-18 20:34:03 | Deep Dive |
| CVE-2025-14849 | Advantech WebAccess/SCADA Unrestricted Upload of File with Dangerous Type | Advantech | WebAccess/SCADA | High | 8.8 | 2025-12-18 20:32:39 | Deep Dive |
| CVE-2025-14850 | Advantech WebAccess/SCADA Improper Limitation of a Pathname to a Restricted Directory | Advantech | WebAccess/SCADA | High | 8.1 | 2025-12-18 20:30:57 | Deep Dive |
| CVE-2025-14252 | Advantech SUSI 安全漏洞 | Advantech | SUSI | High | 7.8 | 2025-12-16 05:19:55 | Deep Dive |
| CVE-2025-34256 | Advantech WISE-DeviceOn Server < 5.4 Hard-coded JWT Key Authentication Bypass | Advantech Co., Ltd. | WISE-DeviceOn Server | 中危 | - | 2025-12-05 17:18:32 | Deep Dive |
| CVE-2025-34265 | Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via rule-engines | Advantech Co., Ltd. | WISE-DeviceOn Server | 中危 | - | 2025-12-05 17:18:11 | Deep Dive |
| CVE-2025-34263 | Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via plugin-config/dashboards/menus | Advantech Co., Ltd. | WISE-DeviceOn Server | 中危 | - | 2025-12-05 17:17:52 | Deep Dive |
| CVE-2025-34266 | Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via plugin-config/addins/menus | Advantech Co., Ltd. | WISE-DeviceOn Server | 中危 | - | 2025-12-05 17:17:36 | Deep Dive |
| CVE-2025-34264 | Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via dog/{agentId} | Advantech Co., Ltd. | WISE-DeviceOn Server | 中危 | - | 2025-12-05 17:17:17 | Deep Dive |
| CVE-2025-34262 | Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via devices/name/{agent_id} | Advantech Co., Ltd. | WISE-DeviceOn Server | 中危 | - | 2025-12-05 17:16:55 | Deep Dive |
| CVE-2025-34258 | Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via devicemap/plan | Advantech Co., Ltd. | WISE-DeviceOn Server | 中危 | - | 2025-12-05 17:16:37 | Deep Dive |
| CVE-2025-34259 | Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via devicemap/building | Advantech Co., Ltd. | WISE-DeviceOn Server | 中危 | - | 2025-12-05 17:16:20 | Deep Dive |
| CVE-2025-34261 | Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via devicegroups/ | Advantech Co., Ltd. | WISE-DeviceOn Server | 中危 | - | 2025-12-05 17:16:04 | Deep Dive |
| CVE-2025-34260 | Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via action/schedule | Advantech Co., Ltd. | WISE-DeviceOn Server | 中危 | - | 2025-12-05 17:15:44 | Deep Dive |
| CVE-2025-34257 | Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via action/defined | Advantech Co., Ltd. | WISE-DeviceOn Server | 中危 | - | 2025-12-05 17:15:25 | Deep Dive |
| CVE-2025-13373 | Advantech iView SQL Injection | Advantech | iView | High | 7.5 | 2025-12-04 22:50:36 | Deep Dive |