0x00
Vulnerability number
CVE-2021-32930 CVE-2021-32932
CVE-2021-32930
CVE-2021-32932
0x01
Hazard level
high-risk
Vulnerability overview
Advantech iView is a software of Advantech company in China that manages B smart Worx devices based on simple network protocol (SNMP). Due to the lack of authentication in the product configuration, an attacker can change the configuration and execute arbitrary code; Attackers can obtain sensitive information by constructing malicious SQL statements to trigger injection vulnerabilities.
Advantech iView is a software of Advantech company in China that manages B smart Worx devices based on simple network protocol (SNMP).
Due to the lack of authentication in the product configuration, an attacker can change the configuration and execute arbitrary code; Attackers can obtain sensitive information by constructing malicious SQL statements to trigger injection vulnerabilities.
version affected
Advantech iView < v5.7.03.6182
0x04
repair suggestions
The vulnerability repair version has been officially released. It is recommended that users upgrade to the secure version: https://www.advantech.tw/support/details/firmware?id=1-HIPU-183
The vulnerability repair version has been officially released. It is recommended that users upgrade to the secure version: