cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-42703,https://securityvulnerability.io/vulnerability/CVE-2021-42703,AzeoTech DAQFactory,"This vulnerability could allow an attacker to send malicious Javascript code resulting in hijacking of the user’s cookie/session tokens, redirecting the user to a malicious webpage, and performing unintended browser action.",Advantech,Hmi Designer,5.4,MEDIUM,0.0008500000112690032,false,,false,false,false,,,false,false,,2021-11-15T15:15:00.000Z,0
CVE-2021-42706,https://securityvulnerability.io/vulnerability/CVE-2021-42706,AzeoTech DAQFactory,This vulnerability could allow an attacker to disclose information and execute arbitrary code on affected installations of WebAccess/MHI Designer,Advantech,Hmi Designer,7.8,HIGH,0.0017999999690800905,false,,false,false,false,,,false,false,,2021-11-15T14:15:00.000Z,0
CVE-2021-33002,https://securityvulnerability.io/vulnerability/CVE-2021-33002,Out-of-Bounds Write Vulnerability in WebAccess HMI Designer by Advantech,"The WebAccess HMI Designer by Advantech is susceptible to an out-of-bounds write vulnerability, which can be triggered when a user opens a maliciously crafted project file. This flaw may allow an attacker to execute arbitrary code on the affected system, potentially compromising its integrity and security. User interaction is necessary for exploitation, emphasizing the importance of vigilant software usage and caution when handling project files from untrusted sources.",Advantech,Webaccess Hmi Designer,7.8,HIGH,0.006659999955445528,false,,false,false,false,,,false,false,,2021-06-24T17:38:19.000Z,0
CVE-2021-33004,https://securityvulnerability.io/vulnerability/CVE-2021-33004,Memory Corruption Vulnerability in WebAccess HMI Designer by Advantech,"The WebAccess HMI Designer from Advantech is susceptible to a memory corruption issue stemming from inadequate validation of user-uploaded files. This flaw permits an attacker to potentially execute arbitrary code, necessitating user interaction on versions 2.1.9.95 and earlier. Proper file handling and input validation measures are critical to safeguarding against such vulnerabilities.",Advantech,Webaccess Hmi Designer,7.8,HIGH,0.0023300000466406345,false,,false,false,false,,,false,false,,2021-06-24T17:34:07.000Z,0
CVE-2021-33000,https://securityvulnerability.io/vulnerability/CVE-2021-33000,Heap-based Buffer Overflow in WebAccess HMI Designer Affects Multiple Versions,"The WebAccess HMI Designer can be exploited through a maliciously crafted project file, potentially leading to a heap-based buffer overflow. This could enable an attacker to execute arbitrary code within the context of the application. It's important to note that user interaction is required to trigger this vulnerability, making it essential for users to be cautious when opening project files from untrusted sources.",Advantech,Webaccess Hmi Designer,7.8,HIGH,0.008229999803006649,false,,false,false,false,,,false,false,,2021-06-24T17:30:20.000Z,0
CVE-2020-16229,https://securityvulnerability.io/vulnerability/CVE-2020-16229,Type Confusion Vulnerability in Advantech WebAccess HMI Designer,"A vulnerability in Advantech WebAccess HMI Designer enables a type confusion condition due to improper validation of user-supplied data when processing specially crafted project files. This flaw may allow attackers to execute remote code, potentially leading to unauthorized access, information disclosure, data modification, or application instability.",Advantech,Advantech Webaccess Hmi Designer,7.8,HIGH,0.0015800000401213765,false,,false,false,false,,,false,false,,2020-08-06T18:24:10.000Z,0
CVE-2020-16207,https://securityvulnerability.io/vulnerability/CVE-2020-16207,Heap-Based Buffer Overflow Vulnerabilities in Advantech WebAccess HMI Designer,"Advantech WebAccess HMI Designer versions 2.1.9.31 and earlier are susceptible to multiple heap-based buffer overflow vulnerabilities. These vulnerabilities can be triggered by opening specially crafted project files, potentially leading to serious consequences such as remote code execution, unauthorized information disclosure or modification, and application crashes. It is crucial for users of this software to address these vulnerabilities promptly to mitigate the risks associated with potential exploitation.",Advantech,Advantech Webaccess Hmi Designer,7.8,HIGH,0.03894000127911568,false,,false,false,false,,,false,false,,2020-08-06T18:22:34.000Z,0
CVE-2020-16211,https://securityvulnerability.io/vulnerability/CVE-2020-16211,Out-of-Bounds Read Vulnerability in Advantech WebAccess HMI Designer,"Advantech WebAccess HMI Designer has an out-of-bounds read vulnerability affecting versions 2.1.9.31 and earlier. This issue arises from the processing of specially crafted project files, which could allow an attacker to exploit the vulnerability to read sensitive information that should not be accessible. Proper security measures should be implemented to mitigate the risks associated with this vulnerability.",Advantech,Advantech Webaccess Hmi Designer,5.5,MEDIUM,0.0012799999676644802,false,,false,false,false,,,false,false,,2020-08-06T18:21:40.000Z,0
CVE-2020-16213,https://securityvulnerability.io/vulnerability/CVE-2020-16213,Remote Code Execution Vulnerability in Advantech WebAccess HMI Designer,"The Advantech WebAccess HMI Designer is susceptible to a vulnerability that allows remote attackers to exploit specially crafted project files. This flaw occurs due to improper validation of user-supplied data, potentially leading to unauthorized control over the system, disclosure of sensitive information, modification of stored data, or crashing of the application. It is crucial for users to update their systems to prevent exploitation by malicious actors.",Advantech,Advantech Webaccess Hmi Designer,7.8,HIGH,0.0022100000642240047,false,,false,false,false,,,false,false,,2020-08-06T18:20:45.000Z,0
CVE-2020-16215,https://securityvulnerability.io/vulnerability/CVE-2020-16215,Buffer Overflow in Advantech WebAccess HMI Designer Compromises Security,"Advantech WebAccess HMI Designer, specifically versions 2.1.9.31 and earlier, is vulnerable due to improper validation of user-supplied data in specially crafted project files. This may lead to a stack-based buffer overflow, enabling attackers to execute remote code, access or modify sensitive information, or cause the application to crash, effectively compromising the integrity and availability of the HMI Designer's functionality.",Advantech,Advantech Webaccess Hmi Designer,7.8,HIGH,0.007069999817758799,false,,false,false,false,,,false,false,,2020-08-06T18:19:43.000Z,0
CVE-2020-16217,https://securityvulnerability.io/vulnerability/CVE-2020-16217,Double Free Vulnerability in Advantech WebAccess HMI Designer,"A double free vulnerability exists in Advantech WebAccess HMI Designer, specifically in versions 2.1.9.31 and earlier. This vulnerability arises from improper handling of specially crafted project files, which may lead to potential remote code execution, unauthorized disclosure or modification of sensitive information, and instability of the application, causing it to crash.",Advantech,Advantech Webaccess Hmi Designer,7.8,HIGH,0.0022100000642240047,false,,false,false,false,,,false,false,,2020-08-06T18:15:51.000Z,0
CVE-2019-10961,https://securityvulnerability.io/vulnerability/CVE-2019-10961,,"In Advantech WebAccess HMI Designer Version 2.1.9.23 and prior, processing specially crafted MCR files lacking proper validation of user supplied data may cause the system to write outside the intended buffer area, allowing remote code execution.",Advantech,Advantech Webaccess Hmi Designer,8.8,HIGH,0.015860000625252724,false,,false,false,false,,,false,false,,2019-08-02T16:06:09.000Z,0