CVE-2025-52577

A vulnerability exists in Advantech iView that could allow SQL injection
and remote code execution through NetworkServlet.archiveTrapRange().
This issue requires an authenticated attacker with at least user-level
privileges. Certain input parameters are not properly sanitized,
allowing an attacker to perform SQL injection and potentially execute
code in the context of the ‘nt authoritylocal service’ account.

More information : https://www.advantech.com/en/support/details/firmware-?id=1-HIPU-183