Advantech webaccess/scada
This hub aggregates every CVE we track for Advantech webaccess/scada, a product in the ics ot iot space. Use it to gauge the current risk picture and drill into individual advisories.
9
CVEs tracked
0
Critical
5
High
0
In CISA KEV
Severity distribution
HIGH5MEDIUM4
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
5
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 9 most recently published vulnerabilities affecting Advantech webaccess/scada.
- CVE-2025-67653Advantech WebAccess/SCADA Path Traversal4.3
- CVE-2025-46268Advantech WebAccess/SCADA SQL Injection6.3
- CVE-2025-14848Advantech WebAccess/SCADA Absolute Path Traversal4.3
- CVE-2025-14849Advantech WebAccess/SCADA Unrestricted Upload of File with Dangerous Type8.8
- CVE-2025-14850Advantech WebAccess/SCADA Improper Limitation of a Pathname to a Restricted Directory8.1
- CVE-2024-2453Advantech WebAccess/SCADA SQL Injection6.4
- CVE-2023-2866Advantech WebAccess Insufficient Type Distinction7.3
- CVE-2023-22450 In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file upload vulnerability that could allow an attacker to upload an ASP script file to a webserver when logged in as manager u...7.2
- CVE-2023-32628 In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file upload vulnerability that could allow an attacker to modify the file extension of a certificate file to ASP when upload...7.2
Product normalization is registry-driven with AI assist and human review. How it works