CVE-2025-46704

A vulnerability exists in Advantech iView in
NetworkServlet.processImportRequest() that could allow for a directory
traversal attack. This issue requires an authenticated attacker with at
least user-level privileges. A specific parameter is not properly
sanitized or normalized, potentially allowing an attacker to determine
the existence of arbitrary files on the server.

Assigner : ics-cert@hq.dhs.gov

More information : https://www.advantech.com/en/support/details/firmware-?id=1-HIPU-183