Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, and WebAccess/NMS 2.0.3 and prior, several SQL injection vulnerabilities have been identified, which may allow an attacker to disclose sensitive information from the host.
CVSS Information
N/A
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
多款Advantech产品SQL注入漏洞
Vulnerability Description
Advantech WebAccess等都是研华(Advantech)公司的产品。Advantech WebAccess是一套基于浏览器架构的HMI/SCADA软件。该软件支持动态图形显示和实时数据控制,并提供远程控制和管理自动化设备的功能。WebAccess Dashboard是其中的一个仪表板组件;WebAccess Scada Node是其中的一个监控节点组件。WebAccess/NMS是一套用于网络管理系统(NMS)的网络浏览器基础套件。 多款Advantech产品中存在SQL注入漏洞。远程攻击者
CVSS Information
N/A
Vulnerability Type
N/A