Description
Successful exploitation of the SQL injection vulnerability could allow a remote authenticated attacker to
execute arbitrary commands via a specific interface,
potentially enabling the attacker to access, modify, or delete sensitive
information within the database.
Published: 2026-05-13
Score: 7.2 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a classic SQL injection flaw in a web interface of Advantech IoT and SaaS products. An attacker who is authenticated can craft malicious input that is passed unfiltered to an SQL query, permitting arbitrary command execution against the database. This can lead to unauthorized read, modification or deletion of sensitive data, compromising confidentiality and integrity of the system.

Affected Systems

Affected products include Advantech ECOWatch SaaS-Composer, Advantech IoT Edge Linux docker, Advantech IoT Edge Windows, Advantech IoTSuite Growth Linux docker, Advantech IoTSuite Starter Linux docker, Advantech SaaS Composer, Advantech WebAccess SaaS-Composer, and Advantech WebAccess/SCADA. No specific version information is supplied in the CNA data; users should verify if their installed versions are within the affected range.

Risk and Exploitability

The CVSS score of 7.2 indicates a high risk to confidentiality and integrity. The EPSS score is currently unavailable, so the real‑world likelihood of exploitation cannot be quantified. Based on the description, it is inferred that the attack vector is a web application interface that receives user‑supplied data and requires authentication. The vulnerability is not listed in the CISA KEV catalog, so there is no known widespread exploitation yet, but the potential for data breach remains.

Generated by OpenCVE AI on May 13, 2026 at 04:50 UTC.

Remediation

Vendor Solution

Users and administrators of affected product versions are advised to update to the latest versions immediately. For SaaS Composer, IoTSuite Growth Linux docker, IoT Edge Windows, and ECOWatch please contact Advantech  here  https://wise-iot.advantech.com/en-tw/marketplace/help/technical-support for the official release of the fixed version. For IoTSuite Starter Linux docker, please refer to the update guide  here https://portal-kbinsight-wiseiot-ensaas.practice.cloud.advantech.com/kb/library/detail/oPN5exOVNQq . As the update involves a reinstallation process, please refer to the reinstallation guide here https://portal-kbinsight-wiseiot-ensaas.practice.cloud.advantech.com/kb/library/detail/JqNWAMGz1JQ . For IoT Edge Linux docker, please refer to the update guide  here https://portal-kbinsight-wiseiot-ensaas.practice.cloud.advantech.com/kb/library/detail/oPN5exOVNQq . As the update involves a reinstallation process, please refer to the reinstallation guide here https://portal-kbinsight-wiseiot-ensaas.practice.cloud.advantech.com/kb/library/detail/G0yWBn2mp2q . For WebAccess/SCADA and WebAccess SaaS-Composer, please refer to the update guide here https://www.advantech.com/en/support/details/installation .

OpenCVE Recommended Actions

  • Apply the latest vendor releases for all affected Advantech IoT and SaaS products; for SaaS Composer, IoTSuite Growth, IoT Edge Windows, and ECOWatch, obtain the fixed build via Advantech support
  • Follow the provided update guides and reinstallations for IoTSuite Starter Linux docker, IoT Edge Linux docker, and the WebAccess/SCADA products to ensure the patch is correctly applied
  • Restrict or disable the vulnerable web interface until the fix is installed to mitigate potential exploitation

Generated by OpenCVE AI on May 13, 2026 at 04:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 13 May 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 13 May 2026 11:00:00 +0000

Type Values Removed Values Added
First Time appeared Advantech
Advantech ecowatch Saas-composer
Advantech iot Edge Linux Docker
Advantech iot Edge Windows
Advantech iotsuite Growth Linux Docker
Advantech iotsuite Starter Linux Docker
Advantech saas Composer
Advantech webaccess/scada
Advantech webaccess Saas-composer
Vendors & Products Advantech
Advantech ecowatch Saas-composer
Advantech iot Edge Linux Docker
Advantech iot Edge Windows
Advantech iotsuite Growth Linux Docker
Advantech iotsuite Starter Linux Docker
Advantech saas Composer
Advantech webaccess/scada
Advantech webaccess Saas-composer

Wed, 13 May 2026 05:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-89

Wed, 13 May 2026 03:30:00 +0000

Type Values Removed Values Added
Description Successful exploitation of the SQL injection vulnerability could allow a remote authenticated attacker to execute arbitrary commands via a specific interface, potentially enabling the attacker to access, modify, or delete sensitive information within the database.
Title SQL Injection Vulnerability
References
Metrics cvssV3_1

{'score': 7.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Advantech Ecowatch Saas-composer Iot Edge Linux Docker Iot Edge Windows Iotsuite Growth Linux Docker Iotsuite Starter Linux Docker Saas Composer Webaccess/scada Webaccess Saas-composer
cve-icon MITRE

Status: PUBLISHED

Assigner: CSA

Published:

Updated: 2026-05-13T14:35:53.880Z

Reserved: 2026-04-23T02:58:12.750Z

Link: CVE-2026-6888

cve-icon Vulnrichment

Updated: 2026-05-13T14:35:49.378Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-13T04:17:41.093

Modified: 2026-05-13T16:17:02.120

Link: CVE-2026-6888

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-13T10:34:55Z

Weaknesses