CVE-2025-34239 | Advantech WebAccess/VPN up to 1.1.4 AppManagementController.appUpgradeAction os command injection

A vulnerability classified as critical was found in Advantech WebAccess and VPN up to 1.1.4. This vulnerability affects the function AppManagementController.appUpgradeAction. The manipulation results in os command injection.

This vulnerability is reported as CVE-2025-34239. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More