ICSA-21-040-02 · Published 2021-02-09 · View on CISA ICS-CERT ↗

Advantech iView

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities may allow an attacker to disclose information, escalate privileges to Administrator, perform an arbitrary file read, and remotely execute commands.

CVEs (4)

CVE-2021-22654 CVE-2021-22658 CVE-2021-22656 CVE-2021-22652

Remediations

Advantech has released Version 5.7.03.6112 of iView to address these reported vulnerabilities. Users can download the latest version of iView.

Affected Vendors

Advantech

Affected Products (1)

Advantech · iView < 5.7.03.6112

Affected Sectors

Critical Manufacturing, Energy, Water and Wastewater Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more