VARIoT IoT exploits database

Affected products: vendor, model and version
Type can be e.g: Remote Code Execution or Denial of Service
Look up free text in title and description

VAR-E-202012-0353 No CVE Linksys RE6500 1.0.11.001 Remote Code Execution No EDB ID
Linksys RE6500 version 1.0.11.001 unauthenticated remote code execution exploit.
VAR-E-202012-0228 No CVE Linksys RE6500 1.0.11.001 - Unauthenticated RCE - Hardware webapps Exploit EDB ID: 49270
Linksys RE6500 1.0.11.001 - Unauthenticated RCE.. webapps exploit for Hardware platform
VAR-E-202012-0227 No CVE Sony Playstation 4 (PS4) < 7.02 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC) - Hardware webapps Exploit EDB ID: 49309
Sony Playstation 4 (PS4) < 7.02 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC).. webapps exploit for Hardware platform
VAR-E-202012-0099 No CVE Eaton Intelligent Power Manager 1.6 - Directory Traversal EDB ID: 48614
VAR-E-202011-0147 No CVE VTiger v7.0 CRM - 'To' Persistent XSS - PHP webapps Exploit EDB ID: 49090
VTiger v7.0 CRM - 'To' Persistent XSS.. webapps exploit for PHP platform
VAR-E-202011-0061 No CVE Vtiger CRM 7.0 Cross Site Scripting No EDB ID
Vtiger CRM version 7.0 suffers from a persistent cross site scripting vulnerability.
VAR-E-202011-0163 No CVE Cisco 7937G Denial Of Service / Privilege Escalation No EDB ID
Cisco 7937G suffers from denial of service and privilege escalation vulnerabilities.
VAR-E-202011-0110 No CVE Cisco 7937G - DoS/Privilege Escalation - Hardware remote Exploit EDB ID: 49057
Cisco 7937G - DoS/Privilege Escalation.. remote exploit for Hardware platform
VAR-E-202011-0179 CVE-2018-9285
ASUS TM-AC1900 - Arbitrary Command Execution (Metasploit) - Hardware webapps Exploit

Related entries in the VARIoT vulnerabilities database: VAR-201804-1341
EDB ID: 49036
ASUS TM-AC1900 - Arbitrary Command Execution (Metasploit).. webapps exploit for Hardware platform
VAR-E-202011-0048 No CVE Sony Playstation 4 (PS4) < 6.72 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC) - Hardware webapps Exploit EDB ID: 49308
Sony Playstation 4 (PS4) < 6.72 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC).. webapps exploit for Hardware platform
VAR-E-202011-0011 CVE-2020-25015
Genexis Platinum-4410 P4410-V2-1.28 - Broken Access Control and CSRF - Hardware webapps Exploit

Related entries in the VARIoT vulnerabilities database: VAR-202009-0727
EDB ID: 49000
Genexis Platinum-4410 P4410-V2-1.28 - Broken Access Control and CSRF. CVE-2020-25015 . webapps exploit for Hardware platform
VAR-E-202011-0114 No CVE Apache Flink 1.9.x - File Upload RCE (Unauthenticated) - Java webapps Exploit EDB ID: 48978
Apache Flink 1.9.x - File Upload RCE (Unauthenticated).. webapps exploit for Java platform
VAR-E-202011-0291 No CVE Apache Flink 1.9.x Shell Upload No EDB ID
Apache Flink version 1.9.x suffers from a remote code execution vulnerability via a malicious upload.
VAR-E-202010-0085 No CVE Genexis Platinum-4410 P4410-V2-1.28 Cross Site Request Forgery No EDB ID
Genexis Platinum-4410 version P4410-V2-1.28 suffers from a cross site request forgery vulnerability.
VAR-E-202010-0039 No CVE Genexis Platinum-4410 P4410-V2-1.28 - Cross Site Request Forgery to Reboot - Hardware webapps Exploit EDB ID: 48972
Genexis Platinum-4410 P4410-V2-1.28 - Cross Site Request Forgery to Reboot.. webapps exploit for Hardware platform
VAR-E-202010-0140 No CVE Genexis Platinum-4410 Cross Site Scripting No EDB ID
The Genexis Platinum-4410 router suffers from a persistent cross site scripting vulnerability.
VAR-E-202010-0069 No CVE Genexis Platinum-4410 - 'SSID' Persistent XSS - Hardware webapps Exploit EDB ID: 48948
Genexis Platinum-4410 - 'SSID' Persistent XSS.. webapps exploit for Hardware platform
VAR-E-202009-0057 No CVE D-Link DGS-1210-28 Denial Of Service No EDB ID
D-Link DGS-1210-28 suffers from a denial of service vulnerability.
VAR-E-202009-0013 CVE-2020-24034
Sagemcom F@ST 5280 Privilege Escalation

Related entries in the VARIoT vulnerabilities database: VAR-202009-0960
No EDB ID
Sagemcom F@ST 5280 routers using firmware version 1.150.61, and possibly others, have an insecure deserialization vulnerability that allows any authenticated user to perform a privilege escalation to any other user. By making a request with valid sess_id, nonce, and ha1 values inside of the serialized session cookie, an attacker may alter the user value inside of this cookie, and assume the role and permissions of the user specified. By assuming the role of the user internal, which is inaccessible to end users by default, the attacker gains the permissions of the internal account, which includes the ability to flash custom firmware to the router, allowing the attacker to achieve a complete compromise.
VAR-E-202008-0037 CVE-2020-16137
CVE-2020-16138
CVE-2020-16139
Cisco 7937G Privilege Escalation

Related entries in the VARIoT vulnerabilities database: VAR-202008-0711, VAR-202008-0721, VAR-202008-0712
No EDB ID
Cisco 7947G versions SIP-1-4-5-7 and below privilege escalation exploit.