Home/Product/advantech r seenet
Product

advantech r seenet

40 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2023-5642
all versions
Advantech R-SeeNet v2.4.23 allows an unauthenticated remote attacker to read from and write to the snmpmon.ini file, which contain
9.8CRITICAL
 CVE-2023-3256
<= 2.4.22
Advantech R-SeeNet versions 2.4.22 allows low-level users to access and load the content of local files.
8.8HIGH
 CVE-2023-2611
<= 2.4.22
Advantech R-SeeNet versions 2.4.22 is installed with a hidden root-level user that is not available in the users list. This hi
9.8CRITICAL
 CVE-2022-3387
<= 2.4.19
Advantech R-SeeNet Versions 2.4.19 and prior are vulnerable to path traversal attacks. An unauthorized attacker could remotely exp
6.5MEDIUM
 CVE-2022-3386
<= 2.4.17
Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An unauthorized attacker can use an
9.8CRITICAL
 CVE-2022-3385
<= 2.4.17
Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An unauthorized attacker can remotel
9.8CRITICAL
 CVE-2021-21937
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulne
6.5MEDIUM
 CVE-2021-21936
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulne
8.8HIGH
 CVE-2021-21935
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulne
6.5MEDIUM
 CVE-2021-21934
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this at �
6.5MEDIUM
 CVE-2021-21933
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this at �
6.5MEDIUM
 CVE-2021-21932
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this at �
6.5MEDIUM
 CVE-2021-21931
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests at‘ stat_filter’
6.5MEDIUM
 CVE-2021-21930
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests at ‘sn_filter’ pa
6.5MEDIUM
 CVE-2021-21929
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests at ‘prod_filter’
6.5MEDIUM
 CVE-2021-21928
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests at ‘mac_filter’ p
6.5MEDIUM
 CVE-2021-21927
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger these vuln
6.5MEDIUM
 CVE-2021-21926
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger these vuln
6.5MEDIUM
 CVE-2021-21925
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger these vuln
6.5MEDIUM
 CVE-2021-21924
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger these vuln
6.5MEDIUM
 CVE-2021-21923
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulne
4.9MEDIUM
 CVE-2021-21922
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulne
6.5MEDIUM
 CVE-2021-21921
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulne
4.9MEDIUM
 CVE-2021-21920
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulne
4.9MEDIUM
 CVE-2021-21919
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulne
4.9MEDIUM
 CVE-2021-21918
all versions
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulne
4.9MEDIUM
 CVE-2021-21917
all versions
An exploitable SQL injection vulnerability exist in the ‘group_list’ page of the Advantech R-SeeNet 2.4.15 (30.07.2021). A spe
8.8HIGH
 CVE-2021-21916
all versions
An exploitable SQL injection vulnerability exist in the ‘group_list’ page of the Advantech R-SeeNet 2.4.15 (30.07.2021). A spe
8.8HIGH
 CVE-2021-21915
all versions
An exploitable SQL injection vulnerability exist in the ‘group_list’ page of the Advantech R-SeeNet 2.4.15 (30.07.2021). A spe
8.8HIGH
 CVE-2021-21912
all versions
A privilege escalation vulnerability exists in the Windows version of installation for Advantech R-SeeNet Advantech R-SeeNet 2.4.1
7.8HIGH
 CVE-2021-21911
all versions
A privilege escalation vulnerability exists in the Windows version of installation for Advantech R-SeeNet Advantech R-SeeNet 2.4.1
7.8HIGH
 CVE-2021-21910
all versions
A privilege escalation vulnerability exists in the Windows version of installation for Advantech R-SeeNet Advantech R-SeeNet 2.4.1
7.8HIGH
 CVE-2021-21805
all versions
An OS Command Injection vulnerability exists in the ping.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020). A s
9.8CRITICAL
 CVE-2021-21804
all versions
A local file inclusion (LFI) vulnerability exists in the options.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.20
9.8CRITICAL
 CVE-2021-21803
all versions
This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications. A speci
6.1MEDIUM
 CVE-2021-21802
all versions
This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications. A speci
6.1MEDIUM
 CVE-2021-21801
all versions
This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications. A speci
6.1MEDIUM
 CVE-2021-21800
all versions
Cross-site scripting vulnerabilities exist in the ssh_form.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020). I
6.1MEDIUM
 CVE-2021-21799
all versions
Cross-site scripting vulnerabilities exist in the telnet_form.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020)
6.1MEDIUM
 CVE-2020-25157
>= 1.5.1 and <= 2.4.10
The R-SeeNet webpage (1.5.1 through 2.4.10) suffers from SQL injection, which allows a remote attacker to invoke queries on the da
7.5HIGH
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Recently exploited
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh