Details of VAR-202206-2050

ID

VAR-202206-2050

CVE

CVE-2022-2135

TITLE

Advantech iView setTaskEditorItem DESCRIPTION SQL Injection Remote Code Execution Vulnerability

Trust: 0.7

sources: ZDI: ZDI-22-919

DESCRIPTION

The affected product is vulnerable to multiple SQL injections, which may allow an unauthorized attacker to disclose information. Authentication is not required to exploit this vulnerability.The specific flaw exists within the NetworkServlet endpoint, which listens on TCP port 8080 by default. When parsing the sortname and sortorder elements of the runTaskEditorSearch action, the process does not properly validate a user-supplied string before using it to construct SQL queries. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise

Trust: 11.07

sources: NVD: CVE-2022-2135 // ZDI: ZDI-22-918 // ZDI: ZDI-22-880 // ZDI: ZDI-22-887 // ZDI: ZDI-22-890 // ZDI: ZDI-22-895 // ZDI: ZDI-22-897 // ZDI: ZDI-22-900 // ZDI: ZDI-22-919 // ZDI: ZDI-22-907 // ZDI: ZDI-22-910 // ZDI: ZDI-22-913 // ZDI: ZDI-22-914 // ZDI: ZDI-22-915 // ZDI: ZDI-22-916 // ZDI: ZDI-22-917 // ZDI: ZDI-22-905 // VULHUB: VHN-426269

AFFECTED PRODUCTS

vendor:	advantech	model:	iview	scope:	-	version:	-	Trust: 11.2
vendor:	advantech	model:	iview	scope:	lt	version:	5.7.04.6469	Trust: 1.0

sources: ZDI: ZDI-22-919 // ZDI: ZDI-22-918 // ZDI: ZDI-22-917 // ZDI: ZDI-22-916 // ZDI: ZDI-22-915 // ZDI: ZDI-22-914 // ZDI: ZDI-22-913 // ZDI: ZDI-22-910 // ZDI: ZDI-22-907 // ZDI: ZDI-22-905 // ZDI: ZDI-22-900 // ZDI: ZDI-22-897 // ZDI: ZDI-22-895 // ZDI: ZDI-22-890 // ZDI: ZDI-22-887 // ZDI: ZDI-22-880 // NVD: CVE-2022-2135

CVSS

SEVERITY

CVSSV2

CVSSV3

ZDI:	CVE-2022-2135
value:	HIGH
Trust: 8.4
ZDI:	CVE-2022-2135
value:	CRITICAL
Trust: 2.8
nvd@nist.gov:	CVE-2022-2135
value:	HIGH
Trust: 1.0
ics-cert@hq.dhs.gov:	CVE-2022-2135
value:	HIGH
Trust: 1.0
CNNVD:	CNNVD-202206-2713
value:	HIGH
Trust: 0.6

ZDI:	CVE-2022-2135
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.0
Trust: 8.4
ZDI:	CVE-2022-2135
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	5.9
version:	3.0
Trust: 2.8
nvd@nist.gov:	CVE-2022-2135
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.1
Trust: 2.0

PROBLEMTYPE DATA

problemtype:

CWE-89

Trust: 1.1

sources: VULHUB: VHN-426269 // NVD: CVE-2022-2135

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202206-2713

TYPE

SQL injection

Trust: 0.6

sources: CNNVD: CNNVD-202206-2713

PATCH

title:

Advantech has issued an update to correct this vulnerability.

url:

https://www.cisa.gov/uscert/ics/advisories/icsa-22-179-03

Trust: 11.2

EXTERNAL IDS

db:	NVD	id:	CVE-2022-2135	Trust: 12.9
db:	ICS CERT	id:	ICSA-22-179-03	Trust: 1.7
db:	ZDI_CAN	id:	ZDI-CAN-16750	Trust: 0.7
db:	ZDI	id:	ZDI-22-919	Trust: 0.7
db:	ZDI_CAN	id:	ZDI-CAN-16529	Trust: 0.7
db:	ZDI	id:	ZDI-22-918	Trust: 0.7
db:	ZDI_CAN	id:	ZDI-CAN-16535	Trust: 0.7
db:	ZDI	id:	ZDI-22-917	Trust: 0.7
db:	ZDI_CAN	id:	ZDI-CAN-16561	Trust: 0.7
db:	ZDI	id:	ZDI-22-916	Trust: 0.7
db:	ZDI_CAN	id:	ZDI-CAN-16585	Trust: 0.7
db:	ZDI	id:	ZDI-22-915	Trust: 0.7
db:	ZDI_CAN	id:	ZDI-CAN-16562	Trust: 0.7
db:	ZDI	id:	ZDI-22-914	Trust: 0.7
db:	ZDI_CAN	id:	ZDI-CAN-16591	Trust: 0.7
db:	ZDI	id:	ZDI-22-913	Trust: 0.7
db:	ZDI_CAN	id:	ZDI-CAN-16659	Trust: 0.7
db:	ZDI	id:	ZDI-22-910	Trust: 0.7
db:	ZDI_CAN	id:	ZDI-CAN-16549	Trust: 0.7
db:	ZDI	id:	ZDI-22-907	Trust: 0.7
db:	ZDI_CAN	id:	ZDI-CAN-16583	Trust: 0.7
db:	ZDI	id:	ZDI-22-905	Trust: 0.7
db:	ZDI_CAN	id:	ZDI-CAN-16548	Trust: 0.7
db:	ZDI	id:	ZDI-22-900	Trust: 0.7
db:	ZDI_CAN	id:	ZDI-CAN-16695	Trust: 0.7
db:	ZDI	id:	ZDI-22-897	Trust: 0.7
db:	ZDI_CAN	id:	ZDI-CAN-16544	Trust: 0.7
db:	ZDI	id:	ZDI-22-895	Trust: 0.7
db:	ZDI_CAN	id:	ZDI-CAN-16656	Trust: 0.7
db:	ZDI	id:	ZDI-22-890	Trust: 0.7
db:	ZDI_CAN	id:	ZDI-CAN-16645	Trust: 0.7
db:	ZDI	id:	ZDI-22-887	Trust: 0.7
db:	ZDI_CAN	id:	ZDI-CAN-16782	Trust: 0.7
db:	ZDI	id:	ZDI-22-880	Trust: 0.7
db:	CS-HELP	id:	SB2022062918	Trust: 0.6
db:	AUSCERT	id:	ESB-2022.3141	Trust: 0.6
db:	CNNVD	id:	CNNVD-202206-2713	Trust: 0.6
db:	VULHUB	id:	VHN-426269	Trust: 0.1

REFERENCES

url:	https://www.cisa.gov/uscert/ics/advisories/icsa-22-179-03	Trust: 12.9
url:	https://cxsecurity.com/cveshow/cve-2022-2135/	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2022.3141	Trust: 0.6
url:	https://www.cybersecurity-help.cz/vdb/sb2022062918	Trust: 0.6
url:	https://us-cert.cisa.gov/ics/advisories/icsa-22-179-03	Trust: 0.6

CREDITS

@rgod777

Trust: 7.0

sources: ZDI: ZDI-22-919 // ZDI: ZDI-22-916 // ZDI: ZDI-22-915 // ZDI: ZDI-22-914 // ZDI: ZDI-22-913 // ZDI: ZDI-22-910 // ZDI: ZDI-22-905 // ZDI: ZDI-22-897 // ZDI: ZDI-22-890 // ZDI: ZDI-22-887

SOURCES

db:	ZDI	id:	ZDI-22-919
db:	ZDI	id:	ZDI-22-918
db:	ZDI	id:	ZDI-22-917
db:	ZDI	id:	ZDI-22-916
db:	ZDI	id:	ZDI-22-915
db:	ZDI	id:	ZDI-22-914
db:	ZDI	id:	ZDI-22-913
db:	ZDI	id:	ZDI-22-910
db:	ZDI	id:	ZDI-22-907
db:	ZDI	id:	ZDI-22-905
db:	ZDI	id:	ZDI-22-900
db:	ZDI	id:	ZDI-22-897
db:	ZDI	id:	ZDI-22-895
db:	ZDI	id:	ZDI-22-890
db:	ZDI	id:	ZDI-22-887
db:	ZDI	id:	ZDI-22-880
db:	VULHUB	id:	VHN-426269
db:	CNNVD	id:	CNNVD-202206-2713
db:	NVD	id:	CVE-2022-2135

LAST UPDATE DATE

2025-11-25T23:06:28.167000+00:00

SOURCES UPDATE DATE

db:	ZDI	id:	ZDI-22-919	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-918	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-917	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-916	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-915	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-914	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-913	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-910	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-907	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-905	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-900	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-897	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-895	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-890	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-887	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-880	date:	2022-06-30T00:00:00
db:	VULHUB	id:	VHN-426269	date:	2022-07-28T00:00:00
db:	CNNVD	id:	CNNVD-202206-2713	date:	2022-07-29T00:00:00
db:	NVD	id:	CVE-2022-2135	date:	2022-07-28T20:10:10.260

SOURCES RELEASE DATE

db:	ZDI	id:	ZDI-22-919	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-918	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-917	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-916	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-915	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-914	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-913	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-910	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-907	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-905	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-900	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-897	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-895	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-890	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-887	date:	2022-06-30T00:00:00
db:	ZDI	id:	ZDI-22-880	date:	2022-06-30T00:00:00
db:	VULHUB	id:	VHN-426269	date:	2022-07-22T00:00:00
db:	CNNVD	id:	CNNVD-202206-2713	date:	2022-06-28T00:00:00
db:	NVD	id:	CVE-2022-2135	date:	2022-07-22T15:15:08.117