VARIoT IoT vulnerabilities database

All firmware versions of the NPort 5000 Series are affected by an improper validation of integrity check vulnerability. This vulnerability results from insufficient checks on firmware updates or upgrades, potentially allowing malicious users to manipulate the firmware and gain control of devices. nport 5150ai-m12-ct-t firmware, nport 5250ai-m12-ct-t firmware, nport 5150ai-m12-t firmware etc. Moxa Inc. The product contains a vulnerability related to insufficient data integrity verification.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state

Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan. APQ8064AU firmware, CSRB31024 firmware, QCA6390 Multiple Qualcomm products, such as firmware, contain an out-of-bounds read vulnerability.Information may be obtained

Information Disclosure in data Modem while parsing an FMTP line in an SDP message. 315 5g iot modem firmware, 9206 lte modem firmware, 9207 lte modem Unspecified vulnerabilities exist in multiple Qualcomm products, including firmware.Information may be obtained

Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value. 315 5g iot modem firmware, 9206 lte modem firmware, 9207 lte modem Unspecified vulnerabilities exist in multiple Qualcomm products, including firmware.Information may be obtained

Memory Corruption in Data Modem while making a MO call or MT VOLTE call. 315 5g iot modem firmware, 9205 lte modem firmware, 9206 lte modem Several Qualcomm products, such as firmware, contain an out-of-bounds write vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state

Weak configuration in Automotive while VM is processing a listener request from TEE. APQ8064AU firmware, MSM8996AU firmware, QAM8295P Unspecified vulnerabilities exist in multiple Qualcomm products, including firmware.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state

In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privilege needed. User interaction is not needed for exploitation. Patch ID: MOLY01068234; Issue ID: ALPS08010003. LR11 , LR12A , LR13 A number of MediaTek products, including the following, contain out-of-bounds write vulnerabilities.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state

** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DAR-7000 up to 20151231. It has been rated as critical. Affected by this issue is some unknown functionality of the file /sysmanage/edit_manageadmin.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-240992. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: Vendor was contacted early and confirmed immediately that the product is end-of-life. It should be retired and replaced. D-Link Systems, Inc. of dar-7000 The firmware has SQL There is an injection vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state

Shenzhen Smart Light Information Technology Co., Ltd. is an emerging high-tech company integrating R&D, production and sales. There is a command execution vulnerability in the Smart Lighting IPTV gateway of Shenzhen Smart Lighting Information Technology Co., Ltd. An attacker can use this vulnerability to gain control of the server.

D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via websGetVar function. D-Link Systems, Inc. of DIR-619L An out-of-bounds write vulnerability exists in firmware.Service operation interruption (DoS) It may be in a state. The D-Link DIR-619L B1 is a series of routers manufactured by D-Link, a Chinese company. Detailed vulnerability information is not currently available

D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWanL2TP function. D-Link Systems, Inc. of DIR-619L An out-of-bounds write vulnerability exists in firmware.Service operation interruption (DoS) It may be in a state. The D-Link DIR-619L B1 is a series of routers manufactured by D-Link, a Chinese company. Detailed vulnerability information is not currently available

D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWAN_Wizard7 function. D-Link Systems, Inc. of DIR-619L An out-of-bounds write vulnerability exists in firmware.Service operation interruption (DoS) It may be in a state. The D-Link DIR-619L B1 is a series of routers manufactured by D-Link, a Chinese company. Detailed vulnerability information is not currently available

D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWanPPTP function. D-Link Systems, Inc. of DIR-619L An out-of-bounds write vulnerability exists in firmware.Service operation interruption (DoS) It may be in a state. The D-Link DIR-619L B1 is a series of routers manufactured by D-Link, a Chinese company. Detailed vulnerability information is not currently available

D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWAN_Wizard55 function. D-Link Systems, Inc. of DIR-619L An out-of-bounds write vulnerability exists in firmware.Service operation interruption (DoS) It may be in a state. The D-Link DIR-619L B1 is a series of routers manufactured by D-Link, a Chinese company. Detailed vulnerability information is not currently available

D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWanDhcpplus function. D-Link Systems, Inc. of DIR-619L An out-of-bounds write vulnerability exists in firmware.Service operation interruption (DoS) It may be in a state. The D-Link DIR-619L is a wireless router designed for home and small office environments. It implements the IEEE 802.11n standard and offers a maximum transmission rate of 300Mbps. Detailed vulnerability details are not available at this time

D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formLanguageChange function. D-Link Systems, Inc. of DIR-619L An out-of-bounds write vulnerability exists in firmware.Service operation interruption (DoS) It may be in a state. The D-Link DIR-619L B1 is a series of routers manufactured by D-Link, a Chinese company. Detailed vulnerability information is not currently available

D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWanPPPoE function. D-Link Systems, Inc. of DIR-619L An out-of-bounds write vulnerability exists in firmware.Service operation interruption (DoS) It may be in a state. The D-Link DIR-619L B1 is a series of routers manufactured by D-Link, a Chinese company. Detailed vulnerability information is not currently available

D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWanNonLogin function. D-Link Systems, Inc. of DIR-619L An out-of-bounds write vulnerability exists in firmware.Service operation interruption (DoS) It may be in a state. The D-Link DIR-619L B1 is a series of routers manufactured by D-Link, a Chinese company. Detailed vulnerability information is not currently available

D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWAN_Wizard56 function. D-Link Systems, Inc. of DIR-619L An out-of-bounds write vulnerability exists in firmware.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. D-Link DIR-619L is a wireless router. This vulnerability is due to incorrect bounds checking of the formSetWAN_Wizard56 function. An attacker could exploit this vulnerability to cause a denial of service

Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the ssid parameter in the form_fast_setting_wifi_set function. Tenda of AC10U A buffer error vulnerability exists in the firmware.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. The Tenda AC10U is a dual-band gigabit wireless router from Tenda Technology, designed for fiber optic homes with speeds of 200 Mbps and above. It supports 802.11ac dual-band technology (2.4GHz and 5GHz), with a theoretical WiFi speed of up to 867Mbps. Detailed vulnerability information is not currently available