VARIoT IoT vulnerabilities database

Affected products: vendor, model and version
CWE format is 'CWE-number'. Threat type can be: remote or local
Look up free text in title and description

VAR-201909-0186 CVE-2019-12672 Cisco IOS XE Software link interpretation vulnerabilities CVSS V2: 7.2
CVSS V3: 6.8
Severity: MEDIUM
A vulnerability in the filesystem of Cisco IOS XE Software could allow an authenticated, local attacker with physical access to an affected device to execute arbitrary code on the underlying operating system (OS) with root privileges. The vulnerability is due to insufficient file location validation. An attacker could exploit this vulnerability by placing code in a specific format on a USB device and inserting it into an affected Cisco device. A successful exploit could allow the attacker to execute the code with root privileges on the underlying OS of the affected device. Cisco IOS XE The software contains a link interpretation vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Cisco IOS XE is an operating system developed by Cisco for its network equipment
VAR-201911-0266 CVE-2019-5289 ManageOne Vulnerable to out-of-bounds reading CVSS V2: 5.0
CVSS V3: 7.5
Severity: HIGH
Gauss100 OLTP database in ManageOne with versions of 6.5.0 have an out-of-bounds read vulnerability due to the insufficient checks of the specific packet length. Attackers can construct invalid packets to attack the active and standby communication channels. Successful exploit of this vulnerability could allow the attacker to crash the database on the standby node. ManageOne Contains an out-of-bounds vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. Huawei ManageOne is a set of cloud data center management solutions developed by China's Huawei (Huawei). The product supports unified management of heterogeneous cloud resource pools, and provides functions such as multi-level VDC matching customer organization model, service catalog planning, self-service, centralized alarm analysis, and intelligent operation and maintenance. There is a buffer error vulnerability in the Gauss100 OLTP database in Huawei ManageOne version 6.5.0
VAR-201909-0074 CVE-2019-6653 BIG-IQ Vulnerable to cross-site scripting CVSS V2: 3.5
CVSS V3: 5.4
Severity: MEDIUM
There is a Stored Cross Site Scripting vulnerability in the undisclosed page of a BIG-IQ 6.0.0-6.1.0 or 5.2.0-5.4.0 system. The attack can be stored by users granted the Device Manager and Administrator roles. BIG-IQ Contains a cross-site scripting vulnerability.Information may be obtained and information may be altered
VAR-201909-0073 CVE-2019-6652 BIG-IQ Authentication vulnerability CVSS V2: 6.4
CVSS V3: 6.5
Severity: MEDIUM
In BIG-IQ 6.0.0-6.1.0, services for stats do not require authentication nor do they implement any form of Transport Layer Security (TLS). BIG-IQ Contains an authentication vulnerability.Information may be obtained and information may be altered. F5 BIG-IQ Centralized Management is a set of software-based cloud management solutions from F5 Corporation of the United States. The solution supports the deployment of application delivery and network services across public and private clouds, traditional data centers and hybrid environments. A security vulnerability exists in F5 BIG-IQ Centralized Management versions 6.0.0 through 6.1.0. An attacker could exploit this vulnerability to gain full access to the statistics database on the BIG-IQ system. Successfully exploiting this issue may allow an malicious user to bypass certain security restrictions and perform unauthorized actions
VAR-201909-0071 CVE-2019-6656 BIG-IP APM Edge Client Vulnerable to information disclosure from log files CVSS V2: 5.0
CVSS V3: 7.5
Severity: HIGH
BIG-IP APM Edge Client before version 7.1.8 (7180.2019.508.705) logs the full apm session ID in the log files. Vulnerable versions of the client are bundled with BIG-IP APM versions 15.0.0-15.0.1, 14,1.0-14.1.0.6, 14.0.0-14.0.0.4, 13.0.0-13.1.1.5, 12.1.0-12.1.5, and 11.5.1-11.6.5. In BIG-IP APM 13.1.0 and later, the APM Clients components can be updated independently from BIG-IP software. Client version 7.1.8 (7180.2019.508.705) and later has the fix
VAR-201909-0993 CVE-2019-13527 Rockwell Automation Arena Simulation Software Cat. 9502-Ax Vulnerable to uninitialized pointer access CVSS V2: 6.8
CVSS V3: 7.8
Severity: HIGH
In Rockwell Automation Arena Simulation Software Cat. 9502-Ax, Versions 16.00.00 and earlier, a maliciously crafted Arena file opened by an unsuspecting user may result in the use of a pointer that has not been initialized. 9502-Ax Contains a vulnerability in uninitialized pointer access.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Rockwell Automation Arena Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the processing of DOE files. The issue results from the lack of proper initialization of a pointer prior to accessing it. An attacker can leverage this vulnerability to execute code in the context of the current process. 9502-Ax 16.00.00 and previous versions have security vulnerabilities. 9502-Ax 16.00.00 and earlier
VAR-201909-0528 CVE-2019-14753 SICK FX0-GPNT00000 and FX0-GENT00000 Classic buffer overflow vulnerability in devices CVSS V2: 5.0
CVSS V3: 7.5
Severity: HIGH
SICK FX0-GPNT00000 and FX0-GENT00000 devices through 3.4.0 have a Buffer Overflow. SICK FX0-GPNT00000 and FX0-GENT00000 The device contains a classic buffer overflow vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. Sick FX0-GPNT00000 and FX0-GENT00000 are both safety control modules with built-in Ethernet switches from Sick, Germany. A buffer error vulnerability exists in SICK FX0-GPNT00000 and FX0-GENT00000 versions 3.4.0 and earlier. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations
VAR-201909-1027 CVE-2019-14238 STMicroelectronics STM32F7 Authentication vulnerabilities in devices CVSS V2: 4.6
CVSS V3: 6.6
Severity: MEDIUM
On STMicroelectronics STM32F7 devices, Proprietary Code Read Out Protection (PCROP) (a software IP protection method) can be defeated with a debug probe via the Instruction Tightly Coupled Memory (ITCM) bus. STMicroelectronics STM32F7 The device contains an authentication vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. STMicroelectronics STM32F7 is a microcontroller for embedded systems from STMicroelectronics, Switzerland. A security vulnerability exists in STMicroelectronics STM32F7
VAR-201909-1552 No CVE NApro has authentication bypass vulnerability CVSS V2: 6.6
CVSS V3: -
Severity: MEDIUM
NAPro is a PLC programming software developed by Nandao Technology Jiangsu Co., Ltd. NApro has an authentication bypass vulnerability. An attacker can use this vulnerability to control the PLC through the modified host software to perform arbitrary operations
VAR-201909-1554 No CVE Haiwell PLC has authentication bypass vulnerability CVSS V2: 6.6
CVSS V3: -
Severity: MEDIUM
Xiamen Haiwei Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production, sales and service. Haiwell PLC has an authentication bypass vulnerability that can be exploited by unauthorized attackers to cause unauthorized access to the controller
VAR-201909-1558 No CVE Schneider Electric Modicon M340 PLC Has Unauthorized Access Vulnerability CVSS V2: 2.1
CVSS V3: -
Severity: LOW
Schneider Electric Modicon M340 is a medium-sized PLC of Schneider Electric, which is widely used in the field of industrial control in China. Schneider Electric Modicon M340 PLC has an unauthorized access vulnerability. An attacker can exploit the vulnerability without having to log in to an account, and delete a user's password by constructing a special link
VAR-201909-1551 No CVE Schneider Electric Modicon M340 PLC Has Click Hijacking Vulnerability CVSS V2: 2.1
CVSS V3: -
Severity: LOW
Schneider Electric Modicon M340 is a medium-sized PLC of Schneider Electric, which is widely used in the field of industrial control in China. Schneider Electric Modicon M340 PLC has a click hijacking vulnerability. Attackers can tamper with user passwords by constructing special links
VAR-201909-1555 No CVE Schneider Electric Modicon M340 PLC Has Unauthorized Access Vulnerability CVSS V2: 2.1
CVSS V3: -
Severity: LOW
Schneider Electric Modicon M340 is a medium-sized PLC of Schneider Electric, which is widely used in the field of industrial control in China. Schneider Electric Modicon M340 PLC has an unauthorized access vulnerability. An attacker can exploit the vulnerabilities without logging in to the administrator account, by constructing special links, tampering with user passwords, and obtaining sensitive information
VAR-201909-1553 No CVE NAPro has a backdoor vulnerability CVSS V2: 6.6
CVSS V3: -
Severity: MEDIUM
NAPro is a PLC programming software developed by Nanda Autotech Jiangsu Co., Ltd. NAPro has a backdoor vulnerability. Attackers can use this vulnerability to log in to the PLC to perform illegal operations
VAR-201909-1564 No CVE Authentication Bypass Vulnerability in Unity Pro XL CVSS V2: 6.6
CVSS V3: -
Severity: MEDIUM
Unity Pro XL is a PLC programming software from Schneider Electric. There is an authentication bypass vulnerability in Unity Pro XL, which can be used by unauthorized attackers to access the PLC
VAR-201909-1028 CVE-2019-14239 plural NXP Kinetis Authentication vulnerabilities in product devices CVSS V2: 4.6
CVSS V3: 6.6
Severity: MEDIUM
On NXP Kinetis KV1x, Kinetis KV3x, and Kinetis K8x devices, Flash Access Controls (FAC) (a software IP protection method for execute-only access) can be defeated by leveraging a load instruction inside the execute-only region to expose the protected code into a CPU register. NXP Kinetis KV1x , KV3x , K8x Devices have authentication vulnerabilities.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. NXP Semiconductors NXP Kinetis KV1x, etc. are all microcontrollers from NXP Semiconductors in the Netherlands. A security vulnerability exists in NXP Semiconductors NXP Kinetis KV1x, Kinetis KV3x, and Kinetis K8x. An attacker could exploit this vulnerability to bypass Flash Access Controls (FAC) protection
VAR-201909-0026 CVE-2019-6175 Lenovo System Update Input validation vulnerability CVSS V2: 7.8
CVSS V3: 7.5
Severity: HIGH
A denial of service vulnerability was reported in Lenovo System Update versions prior to 5.07.0088 that could allow configuration files to be written to non-standard locations. Lenovo System Update Contains an input validation vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. Lenovo 3000 C100, etc. are all products of China Lenovo (Lenovo). The Lenovo 3000 C100 is a laptop. The Lenovo 3000 C200 is a laptop. Lenovo ThinkCentre is a desktop computer. Lenovo System Update is one of the system update tools. A denial of service vulnerability exists in several Lenovo products. An attacker could exploit this vulnerability to cause a denial of service. The following products and versions are affected: Lenovo 3000 C100; 3000 C200; 3000 N100; 3000 N200; 3000 V100; 3000 V200; Lenovo 3000 J100; ;3000 S200p;3000 S205;ThinkPad;ThinkCentre;ThinkStation;Lenovo V Series;B Series;K Series;E Series
VAR-201909-0088 CVE-2019-3416 ZTE ZXV10 B860A Input Validation Error Vulnerability CVSS V2: 10.0
CVSS V3: 9.8
Severity: CRITICAL
All versions up to V81511329.1008 of ZTE ZXV10 B860A products are impacted by input validation vulnerability. Due to input validation, unauthorized users can take advantage of this vulnerability to control the user terminal system. ZTE ZXV10 B860A The product contains an input validation vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. ZTE ZXV10 B860A is a network set-top box of China ZTE Corporation
VAR-201909-0718 CVE-2019-16518 Swell Kit Mod Vulnerability in leaking resources to the wrong area in devices CVSS V2: 3.3
CVSS V3: 4.3
Severity: MEDIUM
An issue was discovered on Swell Kit Mod devices that use the Vandy Vape platform. An attacker may be able to trigger an unintended temperature in the victim's mouth and throat via Bluetooth Low Energy (BLE) packets that specify large power or voltage values. Currently there is no information about this vulnerability, please keep an eye on CNNVD or vendor announcements
VAR-201909-1368 CVE-2018-21019 Home Assistant Information Disclosure Vulnerability CVSS V2: 5.0
CVSS V3: 7.5
Severity: HIGH
Home Assistant before 0.67.0 was vulnerable to an information disclosure that allowed an unauthenticated attacker to read the application's error log via components/api.py. This system is mainly used to control home automation equipment