VARIoT IoT vulnerabilities database

Affected products: vendor, model and version
CWE format is 'CWE-number'. Threat type can be: remote or local
Look up free text in title and description

VAR-202208-0089 CVE-2022-31775 IBM DataPower Gateway  In  XML  External entity vulnerabilities CVSS V2: -
CVSS V3: 5.5
Severity: MEDIUM
IBM DataPower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.8, 10.5.0.0, and 2018.4.1.0 through 2018.4.1.21 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 228359. Vendor exploits this vulnerability IBM X-Force ID: 228359 It is published as.Information is obtained and service operation is interrupted (DoS) It may be in a state. IBM DataPower Gateway is a security and integration platform specially designed for mobile, cloud, application programming interface (API), network, service-oriented architecture (SOA), B2B and cloud workloads. The platform secures, integrates . The vulnerability stems from the fact that the network system or product does not set the correct filter to allow reference to external entities. Remote attackers can use this vulnerability to read files by sending specially crafted XML files
VAR-202208-0105 CVE-2022-32750 IBM DataPower Gateway  Cross-site scripting vulnerability in CVSS V2: -
CVSS V3: 5.4
Severity: MEDIUM
IBM DataPower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.8, 10.5.0.0, and 2018.4.1.0 through 2018.4.1.21 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 228435. Vendor exploits this vulnerability IBM X-Force ID: 228435 It is published as.Information may be obtained and information may be tampered with
VAR-202208-0035 CVE-2022-31776 IBM DataPower Gateway  Server-side request forgery vulnerability in CVSS V2: -
CVSS V3: 6.5
Severity: MEDIUM
IBM DataPower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.8, 10.5.0.0, and 2018.4.1.0 through 2018.4.1.21 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 228433. Vendor exploits this vulnerability IBM X-Force ID: 228433 It is published as.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. IBM DataPower Gateway is a security and integration platform specially designed for mobile, cloud, application programming interface (API), network, service-oriented architecture (SOA), B2B and cloud workloads. The platform secures, integrates and optimizes access across channels with a dedicated gateway platform
VAR-202208-0009 CVE-2022-31774 IBM DataPower Gateway  Cross-site scripting vulnerability in CVSS V2: -
CVSS V3: 5.4
Severity: MEDIUM
IBM DataPower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.8, 10.5.0.0, and 2018.4.1.0 through 2018.4.1.21 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 228358. Vendor exploits this vulnerability IBM X-Force ID: 228358 It is published as.Information may be obtained and information may be tampered with. IBM DataPower Gateway is a security and integration platform specially designed for mobile, cloud, application programming interface (API), network, service-oriented architecture (SOA), B2B and cloud workloads. The platform secures, integrates and optimizes access across channels with a dedicated gateway platform
VAR-202208-0160 CVE-2022-27633 TCL LinkHub Mesh Wi-Fi Information Disclosure Vulnerability CVSS V2: 7.8
CVSS V3: 6.5
Severity: MEDIUM
An information disclosure vulnerability exists in the confctl_get_guest_wlan functionality of TCL LinkHub Mesh Wifi MS1G_00_01.00_14. A specially-crafted network packet can lead to information disclosure. An attacker can send packets to trigger this vulnerability. TCL LinkHub Mesh Wi-Fi is a router of TCL company
VAR-202208-0095 CVE-2022-23399 TCL Technology  of  linkhub mesh wifi ac1200  Out-of-bounds write vulnerability in CVSS V2: 10.0
CVSS V3: 8.8
Severity: HIGH
A stack-based buffer overflow vulnerability exists in the confsrv set_port_fwd_rule functionality of TCL LinkHub Mesh Wifi MS1G_00_01.00_14. A specially-crafted network packet can lead to stack-based buffer overflow. An attacker can send a malicious packet to trigger this vulnerability. TCL Technology of linkhub mesh wifi ac1200 Exists in an out-of-bounds write vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. TCL LinkHub Mesh Wi-Fi is a router of TCL company
VAR-202208-0371 CVE-2022-26346 TCL Technology  of  linkhub mesh wifi ac1200  Vulnerability in CVSS V2: 8.3
CVSS V3: 9.6
Severity: CRITICAL
A denial of service vulnerability exists in the ucloud_del_node functionality of TCL LinkHub Mesh Wi-Fi MS1G_00_01.00_14. A specially-crafted network packet can lead to denial of service. An attacker can send packets to trigger this vulnerability. (DoS) It may be in a state
VAR-202208-0163 CVE-2022-27630 TCL Technology  of  linkhub mesh wifi ac1200  Vulnerability regarding information leakage in CVSS V2: 7.8
CVSS V3: 6.5
Severity: MEDIUM
An information disclosure vulnerability exists in the confctl_get_master_wlan functionality of TCL LinkHub Mesh Wi-Fi MS1G_00_01.00_14. A specially-crafted network packet can lead to information disclosure. An attacker can send packets to trigger this vulnerability. TCL LinkHub Mesh Wi-Fi is a router of TCL company
VAR-202208-2387 No CVE Nginx LDAP auth authentication module sample program remote code execution vulnerability CVSS V2: 10.0
CVSS V3: -
Severity: HIGH
Nginx is a lightweight web server/reverse proxy server and email (IMAP/POP3) proxy server from F5. A remote code execution vulnerability exists in the information system that deploys Nginx and references the Nginx LDAP auth authentication module sample code (https://github.com/nginxinc/nginx-ldap-auth), and attackers exploit this vulnerability by sending maliciously constructed HTTP requests headers to the target system, resulting in arbitrary code execution.
VAR-202207-2110 CVE-2022-34527 D-Link DSL-3782 Command Injection Vulnerability CVSS V2: 9.0
CVSS V3: 8.8
Severity: HIGH
D-Link DSL-3782 v1.03 and below was discovered to contain a command injection vulnerability via the function byte_4C0160. of D-Link Japan Co., Ltd. dsl-3782 The firmware has OS A command injection vulnerability exists.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. D-Link DSL-3782 is a wireless router from D-Link Company in Taiwan. No detailed vulnerability details are currently available
VAR-202207-1947 CVE-2022-36381 nintendo Wi-Fi network adapter  WAP-001  Multiple vulnerabilities in CVSS V2: 5.2
CVSS V3: 7.2
Severity: HIGH
OS command injection vulnerability in Nintendo Wi-Fi Network Adaptor WAP-001 All versions allows an attacker with an administrative privilege to execute arbitrary OS commands via unspecified vectors. None
VAR-202207-1948 CVE-2022-36293 nintendo Wi-Fi network adapter  WAP-001  Multiple vulnerabilities in CVSS V2: 5.2
CVSS V3: 7.2
Severity: HIGH
Buffer overflow vulnerability in Nintendo Wi-Fi Network Adaptor WAP-001 All versions allows an attacker with an administrative privilege to execute arbitrary code via unspecified vectors. None
VAR-202207-2077 CVE-2022-2576 Eclipse Foundation  of  Californium  Vulnerability in CVSS V2: -
CVSS V3: 7.5
Severity: HIGH
In Eclipse Californium version 2.0.0 to 2.7.2 and 3.0.0-3.5.0 a DTLS resumption handshake falls back to a DTLS full handshake on a parameter mismatch without using a HelloVerifyRequest. Especially, if used with certificate based cipher suites, that results in message amplification (DDoS other peers) and high CPU load (DoS own peer). The misbehavior occurs only with DTLS_VERIFY_PEERS_ON_RESUMPTION_THRESHOLD values larger than 0. Eclipse Foundation of Californium Exists in unspecified vulnerabilities.Service operation interruption (DoS) It may be in a state. Eclipse Californium is a Java-based code library that provides Coap backend support for the Internet of Things from the Eclipse Foundation. Eclipse Californium versions 2.0.0 to 2.7.2, and 3.0.0 to 3.5.0 have security vulnerabilities due to the vulnerability of the DTLS stack to denial of service attacks
VAR-202207-2105 CVE-2022-34528 of D-Link Japan Co., Ltd.  dsl-3782  Out-of-bounds write vulnerability in firmware CVSS V2: 9.0
CVSS V3: 8.8
Severity: HIGH
D-Link DSL-3782 v1.03 and below was discovered to contain a stack overflow via the function getAttrValue. of D-Link Japan Co., Ltd. dsl-3782 An out-of-bounds write vulnerability exists in firmware.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. D-Link DSL-3782 is a wireless router from D-Link Company in Taiwan. A buffer overflow vulnerability exists in D-Link DSL-3782, which stems from a stack-based buffer overflow in the getAttrValue method. No detailed vulnerability details are currently available
VAR-202207-1929 CVE-2022-27611 Synology Inc.  of  Audio Station  Past traversal vulnerability in CVSS V2: -
CVSS V3: 8.1
Severity: HIGH
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology Audio Station before 6.5.4-3367 allows remote authenticated users to delete arbitrary files via unspecified vectors. Synology Inc. of Audio Station Exists in a past traversal vulnerability.Information is tampered with and service operation is interrupted (DoS) It may be in a state
VAR-202207-1998 CVE-2022-22685 Synology Inc.  of  webdav server  Past traversal vulnerability in CVSS V2: -
CVSS V3: 8.1
Severity: HIGH
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology WebDAV Server before 2.4.0-0062 allows remote authenticated users to delete arbitrary files via unspecified vectors. Synology Inc. of webdav server Exists in a past traversal vulnerability.Information is tampered with and service operation is interrupted (DoS) It may be in a state. Synology WebDAV Server is an extension of HTTP developed by China Synology Company. Allows users to manage files stored on remote servers. Synology WebDAV Server versions prior to 2.4.0-0062 have a path traversal vulnerability
VAR-202207-1940 CVE-2022-27612 Synology Inc.  of  Audio Station  Classic buffer overflow vulnerability in CVSS V2: -
CVSS V3: 9.8
Severity: CRITICAL
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in cgi component in Synology Audio Station before 6.5.4-3367 allows remote attackers to execute arbitrary commands via unspecified vectors. Synology Inc. of Audio Station Exists in a classic buffer overflow vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Synology Audio Station is a way for users to store and share their music collections and connect to Internet radio stations from Synology China. Allows for high-quality playback on a variety of devices. There is a security vulnerability in versions prior to Synology Audio Station 6.5.4-3367
VAR-202207-2025 CVE-2022-27615 Synology Inc.  of  DNS Server  Past traversal vulnerability in CVSS V2: -
CVSS V3: 8.1
Severity: HIGH
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in cgi component in Synology DNS Server before 2.2.2-5027 allows remote authenticated users to delete arbitrary files via unspecified vectors. Synology Inc. of DNS Server Exists in a past traversal vulnerability.Information is tampered with and service operation is interrupted (DoS) It may be in a state
VAR-202207-2011 CVE-2022-22684 Synology Inc.  of  DiskStation Manager  In  OS  Command injection vulnerability CVSS V2: -
CVSS V3: 7.2
Severity: HIGH
Improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in task management component in Synology DiskStation Manager (DSM) before 6.2.4-25553 allows remote authenticated users to execute arbitrary commands via unspecified vectors. Synology Inc. of DiskStation Manager for, OS A command injection vulnerability exists.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Synology DiskStation Manager (DSM) is an operating system for network storage servers (NAS) developed by Synology, Taiwan. The operating system can manage data, documents, photos, music and other information
VAR-202207-1999 CVE-2022-27613 Synology Inc.  of  CardDAV Server  In  SQL  Injection vulnerability CVSS V2: -
CVSS V3: 8.8
Severity: HIGH
Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in webapi component in Synology CardDAV Server before 6.0.10-0153 allows remote authenticated users to inject SQL commands via unspecified vectors. Synology Inc. of CardDAV Server for, SQL There is an injection vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state