Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Adam\-5630_firmware
(Advantech)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 3 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-09-27 | CVE-2024-39275 | Cookies of authenticated Advantech ADAM-5630 users remain as active valid cookies when a session is closed. Forging requests with a legitimate cookie, even if the session was terminated, allows an unauthorized attacker to act with the same level of privileges of the legitimate user. | Adam\-5630_firmware | 8.8 | ||
| 2024-09-27 | CVE-2024-34542 | Advantech ADAM-5630 shares user credentials plain text between the device and the user source device during the login process. | Adam\-5630_firmware | 5.7 | ||
| 2024-09-27 | CVE-2024-28948 | Advantech ADAM-5630 contains a cross-site request forgery (CSRF) vulnerability. It allows an attacker to partly circumvent the same origin policy, which is designed to prevent different websites from interfering with each other. | Adam\-5630_firmware | 8.8 |