ICS Advantech iView NetworkServlet backupDatabase backup_filename Command Injection -1.u (CVE-2022-2143)

Rule ID

1231552

Severity

High

Description

A command injection vulnerability has been reported for Advantech iView. This vulnerability is due to improper input validation of the backup_filename parameter while updating NetworkServlet database.

Impact

Remote command execution

Recommendation

Update vendor's patch.

IPS Category

ICS threats

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2022-2143

ZDI-22-935

ICSA-22-179-03

T1190

T1059

T0819

T0853

Keywords

N/A

Date Created

2022/08/15

Last Updated

2026/06/12