Unrated severityNVD Advisory· Published Jan 12, 2026· Updated Jan 26, 2026
Execution of arbitrary SQL commands
CVE-2025-52694
Description
Successful exploitation of the SQL injection vulnerability could allow an unauthenticated remote attacker to execute arbitrary SQL commands on the vulnerable service when it is exposed to the Internet, potentially affecting data confidentiality, integrity, and availability. Users and administrators of affected product versions are advised to update to the latest versions immediately.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Advantech/IoTSuite and IoT Edge Productsv5Range: SaaSComposer prior to version V3.4.15
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.