Skip to main content

Eki 1522 Firmware

5 CVEs product

Monthly

CVE-2023-4203 MEDIUM POC This Month

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, which can be triggered by authenticated users in the ping tool of the. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Eki 1524 Firmware Eki 1522 Firmware Eki 1521 Firmware
NVD
CVSS 3.1
5.4
EPSS
0.9%
CVE-2023-4202 MEDIUM POC This Month

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, which can be triggered by authenticated users in the device name field of the. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Eki 1524 Firmware Eki 1522 Firmware Eki 1521 Firmware
NVD
CVSS 3.1
5.4
EPSS
0.8%
CVE-2023-2575 HIGH POC PATCH THREAT This Week

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stack-based Buffer Overflow vulnerability, which can be triggered by authenticated users via a crafted POST request. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Stack Overflow Buffer Overflow Eki 1521 Firmware Eki 1522 Firmware Eki 1524 Firmware
NVD
CVSS 3.1
8.8
EPSS
15.5%
CVE-2023-2574 HIGH POC PATCH This Week

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection vulnerability in the device name input field, which can be triggered by authenticated users via a. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Command Injection Eki 1521 Firmware Eki 1522 Firmware Eki 1524 Firmware
NVD
CVSS 3.1
8.8
EPSS
4.8%
CVE-2023-2573 HIGH POC PATCH This Week

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection vulnerability in the NTP server input field, which can be triggered by authenticated users via a. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Command Injection Eki 1521 Firmware Eki 1522 Firmware Eki 1524 Firmware
NVD
CVSS 3.1
8.8
EPSS
4.8%
EPSS 1% CVSS 5.4
MEDIUM POC This Month

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, which can be triggered by authenticated users in the ping tool of the. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Eki 1524 Firmware Eki 1522 Firmware +1
NVD
EPSS 1% CVSS 5.4
MEDIUM POC This Month

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, which can be triggered by authenticated users in the device name field of the. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Eki 1524 Firmware Eki 1522 Firmware +1
NVD
EPSS 15% CVSS 8.8
HIGH POC PATCH THREAT This Week

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stack-based Buffer Overflow vulnerability, which can be triggered by authenticated users via a crafted POST request. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Stack Overflow Buffer Overflow Eki 1521 Firmware +2
NVD
EPSS 5% CVSS 8.8
HIGH POC PATCH This Week

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection vulnerability in the device name input field, which can be triggered by authenticated users via a. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Command Injection Eki 1521 Firmware Eki 1522 Firmware +1
NVD
EPSS 5% CVSS 8.8
HIGH POC PATCH This Week

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection vulnerability in the NTP server input field, which can be triggered by authenticated users via a. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Command Injection Eki 1521 Firmware Eki 1522 Firmware +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy