VARIoT IoT vulnerabilities database

Information exposure vulnerability in SYNO.Personal.Application.Info in Synology Application Service before 1.5.4-0320 allows remote authenticated users to obtain sensitive system information via the version parameter. Synology Application Service is a Synology NAS (Network Storage Server) function extension framework developed by China Taiwan Synology Corporation

Shenzhen Woshida Technology Co., Ltd. is an enterprise specializing in the development, production, sales and service of security monitoring products. The WSD-T13 cloud storage camera (Android client) has an unauthorized access vulnerability. The vulnerability is caused by the server's weak check of the client's request data. An attacker could use the vulnerability to modify the login password of other accounts.

Shenzhen Woshida Technology Co., Ltd. is an enterprise specializing in the development, production, sales and service of security monitoring products. The WSD-T13 cloud storage camera has an unauthorized addition vulnerability. The vulnerability is due to the manufacturer's use of default passwords. Allows attackers to use vulnerabilities to add camera accounts and control other people's devices.

Shenzhen Woshida Technology Co., Ltd. is an enterprise specializing in the development, production, sales and service of security monitoring products. The WSD-T13 cloud storage camera (Android client) has an unauthorized access vulnerability. The vulnerability is caused by the server's inadequate verification of client request data. An attacker could use the vulnerability to query the account information of other users.

Domoticz before 4.10578 allows SQL Injection via the idx parameter in CWebServer::GetFloorplanImage in WebServer.cpp. Domoticz Is SQL An injection vulnerability exists.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Domoticz is an open source smart home system. The system supports the monitoring and control of a variety of smart home devices. A SQL injection vulnerability exists in versions prior to Domoticz 4.10578 that stems from the lack of validation of externally-entered SQL statements for database-based applications. An attacker could exploit this vulnerability to execute an illegal SQL command

Grandstream GAC2500 1.0.3.35, GXP2200 1.0.3.27, GVC3202 1.0.3.51, GXV3275 before 1.0.3.219 Beta, and GXV3240 before 1.0.3.219 Beta devices allow unauthenticated remote code execution via shell metacharacters in a /manager?action=getlogcat priority field, in conjunction with a buffer overflow (via the phonecookie cookie) to overwrite a data structure and consequently bypass authentication. This can be exploited remotely or via CSRF because the cookie can be placed in an Accept HTTP header in an XMLHttpRequest call to lighttpd. plural Grandstream The product contains a buffer error vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Grandstream GAC2500, etc. are all products of the American trend network (Grandstream). Grandstream GAC2500 is a business conference phone device based on Android platform. Grandstream GXP2200 is an IP phone. Grandstream GVC3202 is a full HD video conferencing device. A buffer error vulnerability exists in several Grandstream products. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc. The following products and versions are affected: Grandstream GAC2500 version 1.0.3.35; GXP2200 version 1.0.3.27; GVC3202 version 1.0.3.51; GXV3275 version before 1.0.3.219 Beta; GXV3240 version before 1.0.3.219 Beta

Shandong Zhixin Information Technology Co., Ltd. is a comprehensive high-tech enterprise integrating software research and development, system integration, Internet of Things, virtual reality, big data, cloud computing, artificial intelligence and Internet services. There is a SQL injection vulnerability in the website construction system of Shandong Zhixin Information Technology Co., Ltd. An attacker could use the vulnerability to obtain sensitive database information.

Grandstream GWN7610 before 1.0.8.18 devices allow remote authenticated users to execute arbitrary code via shell metacharacters in the filename in a /ubus/controller.icc.update_nds_webroot_from_tmp update_nds_webroot_from_tmp API call. Grandstream GWN7610 The device contains a command injection vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Grandstream GWN7610 is a wireless access point device from Grandstream. There are security vulnerabilities in Grandstream GWN7610 versions prior to 1.0.8.18. An attacker could use this vulnerability to execute an illegal command

Grandstream UCM6204 before 1.0.19.20 devices allow remote authenticated users to execute arbitrary code via shell metacharacters in the backupUCMConfig file-backup parameter to the /cgi? URI. Grandstream UCM6204 The device contains a command injection vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Grandstream UCM6204 is an IP PBX (Private Branch eXchange) device from Grandstream. There are security vulnerabilities in Grandstream UCM6204 versions prior to 1.0.19.20. An attacker could use this vulnerability to execute an illegal command

Grandstream GXV3370 before 1.0.1.41 and WP820 before 1.0.3.6 devices allow remote authenticated users to execute arbitrary code via shell metacharacters in a /manager?action=getlogcat priority field. Grandstream GXV3370 and WP820 The device contains a command injection vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Both Grandstream GXV3370 and Grandstream WP820 are products of Grandstream. Grandstream GXV3370 is an IP video phone device. Grandstream WP820 is a portable business WiFi phone. There are security vulnerabilities in Grandstream GXV3370 versions before 1.0.1.41 and WP820 versions before 1.0.3.6. An attacker could use this vulnerability to execute an illegal command

Grandstream GWN7000 before 1.0.6.32 and GWN7610 before 1.0.8.18 devices allow remote authenticated users to discover passwords via a /ubus/uci.apply config request. Grandstream GWN7000 and GWN7610 The device contains an information disclosure vulnerability.Information may be obtained. Both Grandstream GWN7610 and Grandstream GWN7000 are products of Grandstream. Grandstream GWN7610 is a wireless access point device. Grandstream GWN7000 is an enterprise VPN router. The vulnerability stems from configuration errors during the operation of the network system or product. An unauthorized attacker could use the vulnerability to obtain sensitive information about the affected component

Grandstream GXV3611IR_HD before 1.0.3.23 devices allow remote authenticated users to execute arbitrary code via shell metacharacters in the /goform/systemlog?cmd=set logserver field. Grandstream GXV3611IR_HD The device contains a command injection vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Grandstream GXV3611IR_HD is a webcam from Grandstream. There are security vulnerabilities in Grandstream GXV3611IR_HD versions before 1.0.3.23. An attacker could use this vulnerability to execute an illegal command

Grandstream GWN7000 before 1.0.6.32 devices allow remote authenticated users to execute arbitrary code via shell metacharacters in the filename in a /ubus/uci.apply update_nds_webroot_from_tmp API call. Grandstream GWN7000 The device contains a command injection vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Grandstream GWN7000 is an enterprise VPN router from Grandstream. There are security vulnerabilities in Grandstream GWN7000 versions prior to 1.0.6.32. An attacker could use this vulnerability to execute an illegal command

Grandstream UCM6204 before 1.0.19.20 devices allow remote authenticated users to conduct SQL injection attacks via the sord parameter in a listCodeblueGroup API call to the /cgi? URI. Grandstream UCM6204 The device includes SQL An injection vulnerability exists.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. The GrandstreamUCM6204 is an IPPBX (PrivateBrancheXchange, dedicated switch) device from Grandstream. A SQL injection vulnerability exists in versions prior to GrandstreamUCM62041.0.19.20. This vulnerability stems from the lack of validation of external input SQL statements for database-based applications. An attacker could exploit this vulnerability to execute an illegal SQL command

On Grandstream GXV3611IR_HD before 1.0.3.23 devices, the root account lacks a password. Grandstream GXV3611IR_HD The device contains vulnerabilities related to certificate and password management.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Grandstream GXV3611IR_HD is a webcam from Grandstream. There are security vulnerabilities in Grandstream GXV3611IR_HD versions before 1.0.3.23. Attackers can use default passwords, hard-coded passwords, hard-coded certificates, etc. to attack affected components

TP-Link TL-WR840N devices allow remote attackers to cause a denial of service (networking outage) via fragmented packets, as demonstrated by an "nmap -f" command. TP-Link TL-WR840N The device contains a buffer error vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. The TP-LINKTL-WR840N is a wireless router with 13 channels and supports VPN. A denial of service vulnerability exists in TP-LinkTL-WR840N. There is a buffer error vulnerability in TP-Link TL-WR840N. This vulnerability originates from incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc

KingView is an industrial automation configuration software produced by Beijing Yakong Technology Development Co., Ltd. Kingfisher 6.60 SP3 has a denial of service vulnerability. The vulnerability stems from the failure to verify the SVG format. Attackers can use this vulnerability to cause a denial of service

The L2CAP signaling channel implementation and SDP server implementation in OpenSynergy Blue SDK 3.2 through 6.0 allow remote, unauthenticated attackers to execute arbitrary code or cause a denial of service via malicious L2CAP configuration requests, in conjunction with crafted SDP communication over maliciously configured L2CAP channels. The attacker must have connectivity over the Bluetooth physical layer, and must be able to send raw L2CAP frames. This is related to L2Cap_HandleConfigReq in core/stack/l2cap/l2cap_sm.c and SdpServHandleServiceSearchAttribReq in core/stack/sdp/sdpserv.c. OpenSynergy Blue SDK Contains an input validation vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Advantech WebAccess Node. Authentication is not required to exploit this vulnerability.The specific flaw exists within spchapi.exe, which is accessed through the 0x2711 IOCTL in the webvrpcs process. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of Administrator.

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Advantech WebAccess Node. Authentication is not required to exploit this vulnerability.The specific flaw exists within tv_enua.exe, which is accessed through the 0x2711 IOCTL in the webvrpcs process. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of Administrator.