Lucene search

IcscertCVELIST:CVE-2020-14497

HistoryJul 15, 2020 - 1:50 a.m.

CVE-2020-14497

2020-07-1501:50:54

CWE-89

icscert

www.cve.org

9.9 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.8%

JSON

Advantech iView, versions 5.6 and prior, contains multiple SQL injection vulnerabilities that are vulnerable to the use of an attacker-controlled string in the construction of SQL queries. An attacker could extract user credentials, read or modify information, and remotely execute code.

CNA Affected

[
  {
    "product": "Advantech iView",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Versions 5.6 and prior"
      }
    ]
  }
]

References

us-cert.cisa.gov/ics/advisories/icsa-20-196-01

www.zerodayinitiative.com/advisories/ZDI-20-827/

www.zerodayinitiative.com/advisories/ZDI-20-828/

www.zerodayinitiative.com/advisories/ZDI-20-830/

www.zerodayinitiative.com/advisories/ZDI-20-832/

www.zerodayinitiative.com/advisories/ZDI-20-833/

www.zerodayinitiative.com/advisories/ZDI-20-835/

www.zerodayinitiative.com/advisories/ZDI-20-836/

www.zerodayinitiative.com/advisories/ZDI-20-837/

www.zerodayinitiative.com/advisories/ZDI-20-838/

www.zerodayinitiative.com/advisories/ZDI-20-839/

www.zerodayinitiative.com/advisories/ZDI-20-842/

www.zerodayinitiative.com/advisories/ZDI-20-843/

www.zerodayinitiative.com/advisories/ZDI-20-844/

www.zerodayinitiative.com/advisories/ZDI-20-845/

www.zerodayinitiative.com/advisories/ZDI-20-846/

www.zerodayinitiative.com/advisories/ZDI-20-847/

www.zerodayinitiative.com/advisories/ZDI-20-848/

www.zerodayinitiative.com/advisories/ZDI-20-849/

www.zerodayinitiative.com/advisories/ZDI-20-850/

www.zerodayinitiative.com/advisories/ZDI-20-851/

www.zerodayinitiative.com/advisories/ZDI-20-852/

www.zerodayinitiative.com/advisories/ZDI-20-853/

www.zerodayinitiative.com/advisories/ZDI-20-854/

www.zerodayinitiative.com/advisories/ZDI-20-855/

www.zerodayinitiative.com/advisories/ZDI-20-856/

www.zerodayinitiative.com/advisories/ZDI-20-857/

www.zerodayinitiative.com/advisories/ZDI-20-858/

www.zerodayinitiative.com/advisories/ZDI-20-860/

www.zerodayinitiative.com/advisories/ZDI-20-861/

www.zerodayinitiative.com/advisories/ZDI-20-862/

www.zerodayinitiative.com/advisories/ZDI-20-863/

www.zerodayinitiative.com/advisories/ZDI-20-864/

www.zerodayinitiative.com/advisories/ZDI-20-865/

www.zerodayinitiative.com/advisories/ZDI-20-866/

www.zerodayinitiative.com/advisories/ZDI-20-868/

www.zerodayinitiative.com/advisories/ZDI-20-869/