VARIoT IoT exploits database
| VAR-E-201612-0154 | No CVE | Netgear R7000 - Cross-Site Scripting - Hardware webapps Exploit | EDB ID: 40898 |
Netgear R7000 - Cross-Site Scripting.. webapps exploit for Hardware platform
| VAR-E-201612-0014 |
CVE-2017-5633 |
D-Link DI-524 - Cross-Site Request Forgery - Hardware webapps Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201703-0736 | EDB ID: 40983 |
D-Link DI-524 - Cross-Site Request Forgery. CVE-2017-5633 . webapps exploit for Hardware platform
| VAR-E-201612-0017 |
CVE-2016-6277 |
Netgear R7000 / R6400 - 'cgi-bin' Command Injection (Metasploit) - CGI remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201612-0015 | EDB ID: 41598 |
Netgear R7000 / R6400 - 'cgi-bin' Command Injection (Metasploit). CVE-2016-6277 . remote exploit for CGI platform
| VAR-E-201612-0509 | No CVE | Netgear R7000 Command Injection | No EDB ID |
Netgear R7000 suffers from a command injection vulnerability.
| VAR-E-201612-0419 | No CVE | TP-LINK TD-W8951ND Denial Of Service | No EDB ID |
TP-LINK TD-W8951ND suffers from a denial of service vulnerability.
| VAR-E-201612-0127 | No CVE | TP-LINK TD-W8951ND - Denial of Service - Hardware dos Exploit | EDB ID: 40886 |
TP-LINK TD-W8951ND - Denial of Service.. dos exploit for Hardware platform
| VAR-E-201612-0018 |
CVE-2016-6277 |
Netgear R7000 - Command Injection - CGI webapps Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201612-0015 | EDB ID: 40889 |
Netgear R7000 - Command Injection. CVE-2016-6277 . webapps exploit for CGI platform
| VAR-E-201612-0455 | No CVE | Xfinity Gateway - Remote Code Execution Vulnerability | No EDB ID |
| VAR-E-201612-0064 | No CVE | Xfinity Gateway - Remote Code Execution - Hardware webapps Exploit | EDB ID: 40856 |
Xfinity Gateway - Remote Code Execution.. webapps exploit for Hardware platform
| VAR-E-201612-0306 | No CVE | Xfinity Gateway - Cross-Site Request Forgery Vulnerability | No EDB ID |
| VAR-E-201612-0420 | No CVE | Xfinity Gateway Cross Site Request Forgery | No EDB ID |
Xfinity Gateway suffers from a cross site request forgery vulnerability.
| VAR-E-201611-0008 | No CVE | Xfinity Gateway - Cross-Site Request Forgery - Hardware webapps Exploit | EDB ID: 40853 |
Xfinity Gateway - Cross-Site Request Forgery.. webapps exploit for Hardware platform
| VAR-E-201611-0401 | No CVE | SAP NetWeaver AS ABAP 7.4 Directory Traversal | No EDB ID |
SAP NetWeaver AS ABAP version 7.4 suffers from a directory traversal vulnerability.
| VAR-E-201611-0857 | No CVE | Huawei Flybox B660 Router - Auth Bypass Vulnerability | No EDB ID |
| VAR-E-201611-0756 |
CVE-2016-9332 |
Moxa SoftCMS 1.5 - Denial of Service (PoC) - Windows dos Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201702-0920 | EDB ID: 40779 |
Moxa SoftCMS 1.5 - Denial of Service (PoC). CVE-2016-9332 . dos exploit for Windows platform
| VAR-E-201611-0214 | No CVE | Actiontec WCB3000N 0.16.2.5 Privilege Escalation | No EDB ID |
Actiontec WCB3000N with firmware version 0.16.2.5 suffers from a privilege escalation vulnerability.
| VAR-E-201611-0430 |
CVE-2016-6441 |
Cisco IOS XE Software CVE-2016-6441 Buffer Overflow Vulnerability
Related entries in the VARIoT vulnerabilities database: VAR-201611-0158 | No EDB ID |
Cisco IOS XE Software is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.
Attackers can exploit this issue to execute arbitrary code or cause reload of the affected device, resulting in denial-of-service conditions.
This issue being tracked by Cisco Bug ID CSCuy15175.
Note: Cisco ASR 900 Series Aggregation Services Routers (ASR902, ASR903, and ASR907) running the vulnerable versions of the IOS XE Software are vulnerable.
| VAR-E-201610-0158 | No CVE | Trend Micro DirectPass - Bypass & Persistent Vulnerability | No EDB ID |
| VAR-E-201609-0173 | No CVE | Netgear Genie 2.4.32 Privilege Escalation | No EDB ID |
Netgear Genie version 2.4.32 suffers from an unquoted service path elevation of privilege vulnerability.
| VAR-E-201609-0458 | No CVE | Netgear Genie 2.4.32 - Unquoted Service Path Privilege Escalation - Windows local Exploit | EDB ID: 40442 |
Netgear Genie 2.4.32 - Unquoted Service Path Privilege Escalation.. local exploit for Windows platform