Medium severity6.5NVD Advisory· Published Jul 11, 2025· Updated Jun 17, 2026
CVE-2025-53509
CVE-2025-53509
Description
A vulnerability exists in Advantech iView that allows for argument injection in the NetworkServlet.restoreDatabase(). This issue requires an authenticated attacker with at least user-level privileges. An input parameter can be used directly in a command without proper sanitization, allowing arbitrary arguments to be injected. This can result in information disclosure, including sensitive database credentials.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- www.cisa.gov/news-events/ics-advisories/icsa-25-191-08nvdThird Party AdvisoryUS Government Resource
- www.advantech.com/en/support/details/firmware-nvdProduct
News mentions
0No linked articles in our index yet.