Vulnerability CVE-2023-2574


Published: 2023-05-08

Description:
Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection vulnerability in the device name input field, which can be triggered by authenticated users via a crafted POST request.

See advisories in our WLB2 database:
Topic
Author
Date
High
Advantech EKI-15XX Series Command Injection / Buffer Overflow
T. Weber
13.05.2023

 References:
https://www.advantech.com/en/support/details/firmware?id=1-1J9BED3
https://www.advantech.com/en/support/details/firmware?id=1-1J9BECT
https://www.advantech.com/en/support/details/firmware?id=1-1J9BEBL

Copyright 2024, cxsecurity.com

 

Back to Top