Details of VAR-202511-2201

ID

VAR-202511-2201

CVE

CVE-2025-34245

TITLE

Advantech WebAccess/VPN AjaxStandaloneVpnClientsController.ajaxAction function SQL injection vulnerability

Trust: 0.6

sources: CNVD: CNVD-2025-30963

DESCRIPTION

Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in AjaxStandaloneVpnClientsController.ajaxAction() that allows an authenticated low-privileged observer user to inject SQL via datatable search parameters, leading to disclosure of database information. Advantech WebAccess/VPN is a virtual private network function integrated into Advantech's WebAccess/SCADA software, designed to provide a secure and reliable network connectivity solution for industrial automation and remote monitoring systems. Advantech WebAccess/VPN contains an SQL injection vulnerability. This vulnerability stems from the AjaxStandaloneVpnClientsController.ajaxAction function's failure to properly filter datatable search parameters. Attackers can exploit this vulnerability to execute unauthorized SQL commands and steal sensitive database data

Trust: 1.44

sources: NVD: CVE-2025-34245 // CNVD: CNVD-2025-30963

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-30963

AFFECTED PRODUCTS

vendor:	advantech	model:	webaccess\/vpn	scope:	lt	version:	1.1.5	Trust: 1.0
vendor:	advantech	model:	webaccess/vpn	scope:	lt	version:	1.1.5	Trust: 0.6

sources: CNVD: CNVD-2025-30963 // NVD: CVE-2025-34245

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2025-34245
value:	MEDIUM
Trust: 1.0
disclosure@vulncheck.com:	CVE-2025-34245
value:	MEDIUM
Trust: 1.0
CNVD:	CNVD-2025-30963
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2025-30963
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:N/AC:L/AU:S/C:C/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	8.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2025-34245
baseSeverity:	MEDIUM
baseScore:	6.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	2.8
impactScore:	3.6
version:	3.1
Trust: 1.0

sources: CNVD: CNVD-2025-30963 // NVD: CVE-2025-34245 // NVD: CVE-2025-34245

PROBLEMTYPE DATA

problemtype:

CWE-89

Trust: 1.0

sources: NVD: CVE-2025-34245

PATCH

title:

Patch for Advantech WebAccess/VPN AjaxStandaloneVpnClientsController.ajaxAction function SQL injection vulnerability

url:

https://www.cnvd.org.cn/patchInfo/show/782986

Trust: 0.6

sources: CNVD: CNVD-2025-30963

EXTERNAL IDS

db:	NVD	id:	CVE-2025-34245	Trust: 1.6
db:	CNVD	id:	CNVD-2025-30963	Trust: 0.6

sources: CNVD: CNVD-2025-30963 // NVD: CVE-2025-34245

REFERENCES

url:	https://icr.advantech.com/download/software	Trust: 1.0
url:	https://www.vulncheck.com/advisories/advantech-webaccess-vpn-sqli-via-ajaxstandalonevpnclientscontroller	Trust: 1.0
url:	https://icr.advantech.com/support/router-models/download/511/sa-2025-01-vpn-portal-2025-11-06.pdf	Trust: 1.0
url:	https://nvd.nist.gov/vuln/detail/cve-2025-34245	Trust: 0.6

sources: CNVD: CNVD-2025-30963 // NVD: CVE-2025-34245

SOURCES

db:	CNVD	id:	CNVD-2025-30963
db:	NVD	id:	CVE-2025-34245

LAST UPDATE DATE

2025-12-20T23:46:54.141000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2025-30963	date:	2025-12-18T00:00:00
db:	NVD	id:	CVE-2025-34245	date:	2025-11-28T17:02:55.473

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2025-30963	date:	2025-12-18T00:00:00
db:	NVD	id:	CVE-2025-34245	date:	2025-11-06T20:15:48.717