PatchSiren cyber security CVE debrief
CVE-2025-46704 Advantech CVE debrief
CVE-2025-46704 is a medium-severity issue in Advantech iView, published by CISA on 2025-07-10 as ICSA-25-191-08. The vulnerability is in NetworkServlet.processImportRequest() and requires an authenticated attacker with at least user-level privileges. According to the advisory, a parameter is not properly sanitized or normalized, which could allow directory traversal behavior and let an attacker determine whether arbitrary files exist on the server. Advantech’s recommended mitigation is to update iView to version 5.7.05 build 7057.
- Vendor
- Advantech
- Product
- iView
- CVSS
- MEDIUM 4.3
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2025-07-10
- Original CVE updated
- 2025-07-10
- Advisory published
- 2025-07-10
- Advisory updated
- 2025-07-10
Who should care
Administrators and security teams responsible for Advantech iView deployments, especially in OT/ICS environments, should prioritize this if user accounts are available to multiple operators or if file-existence leakage would expose sensitive server structure.
Technical summary
The advisory identifies a directory traversal weakness in Advantech iView’s NetworkServlet.processImportRequest(). The issue is reachable only after authentication and at user-level privilege or higher. A specific parameter is not properly sanitized or normalized, allowing path manipulation that may be used to infer the existence of arbitrary files on the server. The supplied CVSS vector is CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N, consistent with limited confidentiality impact and no integrity or availability impact in the published scoring.
Defensive priority
Medium. Patch promptly if the product is deployed and authenticated users can reach the affected function; otherwise schedule the update into the next maintenance window.
Recommended defensive actions
- Upgrade Advantech iView to version 5.7.05 build 7057 as recommended by the vendor.
- Review who has authenticated access to iView and limit user-level accounts to the minimum necessary.
- Monitor server logs for unusual path or file-access related requests against iView endpoints.
- Treat any file-existence disclosure as sensitive in OT/ICS environments and verify whether adjacent information could be inferred.
- Confirm the deployed iView version against the affected range listed in the advisory: versions earlier than 5.7.05 build 7057.
Evidence notes
All substantive claims in this debrief come from the supplied CISA CSAF advisory data for ICSA-25-191-08 / CVE-2025-46704 and the linked official references. The affected product range is listed as Advantech iView <5.7.05_build_7057, the vulnerability description names NetworkServlet.processImportRequest(), and the remediation states to update to v5.7.05 build 7057. The supplied enrichment marks this as not in KEV.
Official resources
-
CVE-2025-46704 CVE record
CVE.org
-
CVE-2025-46704 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
CISA published the advisory and CVE record on 2025-07-10 (ICSA-25-191-08). The supplied advisory revision history shows an initial publication on that date.