VARIoT IoT vulnerabilities database
| VAR-202208-0089 | CVE-2022-31775 | IBM DataPower Gateway In XML External entity vulnerabilities |
CVSS V2: - CVSS V3: 5.5 Severity: MEDIUM |
IBM DataPower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.8, 10.5.0.0, and 2018.4.1.0 through 2018.4.1.21 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 228359. Vendor exploits this vulnerability IBM X-Force ID: 228359 It is published as.Information is obtained and service operation is interrupted (DoS) It may be in a state. IBM DataPower Gateway is a security and integration platform specially designed for mobile, cloud, application programming interface (API), network, service-oriented architecture (SOA), B2B and cloud workloads. The platform secures, integrates . The vulnerability stems from the fact that the network system or product does not set the correct filter to allow reference to external entities. Remote attackers can use this vulnerability to read files by sending specially crafted XML files
| VAR-202208-0105 | CVE-2022-32750 | IBM DataPower Gateway Cross-site scripting vulnerability in |
CVSS V2: - CVSS V3: 5.4 Severity: MEDIUM |
IBM DataPower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.8, 10.5.0.0, and 2018.4.1.0 through 2018.4.1.21 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 228435. Vendor exploits this vulnerability IBM X-Force ID: 228435 It is published as.Information may be obtained and information may be tampered with
| VAR-202208-0035 | CVE-2022-31776 | IBM DataPower Gateway Server-side request forgery vulnerability in |
CVSS V2: - CVSS V3: 6.5 Severity: MEDIUM |
IBM DataPower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.8, 10.5.0.0, and 2018.4.1.0 through 2018.4.1.21 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 228433. Vendor exploits this vulnerability IBM X-Force ID: 228433 It is published as.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. IBM DataPower Gateway is a security and integration platform specially designed for mobile, cloud, application programming interface (API), network, service-oriented architecture (SOA), B2B and cloud workloads. The platform secures, integrates and optimizes access across channels with a dedicated gateway platform
| VAR-202208-0009 | CVE-2022-31774 | IBM DataPower Gateway Cross-site scripting vulnerability in |
CVSS V2: - CVSS V3: 5.4 Severity: MEDIUM |
IBM DataPower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.8, 10.5.0.0, and 2018.4.1.0 through 2018.4.1.21 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 228358. Vendor exploits this vulnerability IBM X-Force ID: 228358 It is published as.Information may be obtained and information may be tampered with. IBM DataPower Gateway is a security and integration platform specially designed for mobile, cloud, application programming interface (API), network, service-oriented architecture (SOA), B2B and cloud workloads. The platform secures, integrates and optimizes access across channels with a dedicated gateway platform
| VAR-202208-0160 | CVE-2022-27633 | TCL LinkHub Mesh Wi-Fi Information Disclosure Vulnerability |
CVSS V2: 7.8 CVSS V3: 6.5 Severity: MEDIUM |
An information disclosure vulnerability exists in the confctl_get_guest_wlan functionality of TCL LinkHub Mesh Wifi MS1G_00_01.00_14. A specially-crafted network packet can lead to information disclosure. An attacker can send packets to trigger this vulnerability. TCL LinkHub Mesh Wi-Fi is a router of TCL company
| VAR-202208-0095 | CVE-2022-23399 | TCL Technology of linkhub mesh wifi ac1200 Out-of-bounds write vulnerability in |
CVSS V2: 10.0 CVSS V3: 8.8 Severity: HIGH |
A stack-based buffer overflow vulnerability exists in the confsrv set_port_fwd_rule functionality of TCL LinkHub Mesh Wifi MS1G_00_01.00_14. A specially-crafted network packet can lead to stack-based buffer overflow. An attacker can send a malicious packet to trigger this vulnerability. TCL Technology of linkhub mesh wifi ac1200 Exists in an out-of-bounds write vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. TCL LinkHub Mesh Wi-Fi is a router of TCL company
| VAR-202208-0371 | CVE-2022-26346 | TCL Technology of linkhub mesh wifi ac1200 Vulnerability in |
CVSS V2: 8.3 CVSS V3: 9.6 Severity: CRITICAL |
A denial of service vulnerability exists in the ucloud_del_node functionality of TCL LinkHub Mesh Wi-Fi MS1G_00_01.00_14. A specially-crafted network packet can lead to denial of service. An attacker can send packets to trigger this vulnerability. (DoS) It may be in a state
| VAR-202208-0163 | CVE-2022-27630 | TCL Technology of linkhub mesh wifi ac1200 Vulnerability regarding information leakage in |
CVSS V2: 7.8 CVSS V3: 6.5 Severity: MEDIUM |
An information disclosure vulnerability exists in the confctl_get_master_wlan functionality of TCL LinkHub Mesh Wi-Fi MS1G_00_01.00_14. A specially-crafted network packet can lead to information disclosure. An attacker can send packets to trigger this vulnerability. TCL LinkHub Mesh Wi-Fi is a router of TCL company
| VAR-202208-2387 | No CVE | Nginx LDAP auth authentication module sample program remote code execution vulnerability |
CVSS V2: 10.0 CVSS V3: - Severity: HIGH |
Nginx is a lightweight web server/reverse proxy server and email (IMAP/POP3) proxy server from F5.
A remote code execution vulnerability exists in the information system that deploys Nginx and references the Nginx LDAP auth authentication module sample code (https://github.com/nginxinc/nginx-ldap-auth), and attackers exploit this vulnerability by sending maliciously constructed HTTP requests headers to the target system, resulting in arbitrary code execution.
| VAR-202207-2110 | CVE-2022-34527 | D-Link DSL-3782 Command Injection Vulnerability |
CVSS V2: 9.0 CVSS V3: 8.8 Severity: HIGH |
D-Link DSL-3782 v1.03 and below was discovered to contain a command injection vulnerability via the function byte_4C0160. of D-Link Japan Co., Ltd. dsl-3782 The firmware has OS A command injection vulnerability exists.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. D-Link DSL-3782 is a wireless router from D-Link Company in Taiwan. No detailed vulnerability details are currently available
| VAR-202207-1947 | CVE-2022-36381 | nintendo Wi-Fi network adapter WAP-001 Multiple vulnerabilities in |
CVSS V2: 5.2 CVSS V3: 7.2 Severity: HIGH |
OS command injection vulnerability in Nintendo Wi-Fi Network Adaptor WAP-001 All versions allows an attacker with an administrative privilege to execute arbitrary OS commands via unspecified vectors. None
| VAR-202207-1948 | CVE-2022-36293 | nintendo Wi-Fi network adapter WAP-001 Multiple vulnerabilities in |
CVSS V2: 5.2 CVSS V3: 7.2 Severity: HIGH |
Buffer overflow vulnerability in Nintendo Wi-Fi Network Adaptor WAP-001 All versions allows an attacker with an administrative privilege to execute arbitrary code via unspecified vectors. None
| VAR-202207-2077 | CVE-2022-2576 | Eclipse Foundation of Californium Vulnerability in |
CVSS V2: - CVSS V3: 7.5 Severity: HIGH |
In Eclipse Californium version 2.0.0 to 2.7.2 and 3.0.0-3.5.0 a DTLS resumption handshake falls back to a DTLS full handshake on a parameter mismatch without using a HelloVerifyRequest. Especially, if used with certificate based cipher suites, that results in message amplification (DDoS other peers) and high CPU load (DoS own peer). The misbehavior occurs only with DTLS_VERIFY_PEERS_ON_RESUMPTION_THRESHOLD values larger than 0. Eclipse Foundation of Californium Exists in unspecified vulnerabilities.Service operation interruption (DoS) It may be in a state. Eclipse Californium is a Java-based code library that provides Coap backend support for the Internet of Things from the Eclipse Foundation.
Eclipse Californium versions 2.0.0 to 2.7.2, and 3.0.0 to 3.5.0 have security vulnerabilities due to the vulnerability of the DTLS stack to denial of service attacks
| VAR-202207-2105 | CVE-2022-34528 | of D-Link Japan Co., Ltd. dsl-3782 Out-of-bounds write vulnerability in firmware |
CVSS V2: 9.0 CVSS V3: 8.8 Severity: HIGH |
D-Link DSL-3782 v1.03 and below was discovered to contain a stack overflow via the function getAttrValue. of D-Link Japan Co., Ltd. dsl-3782 An out-of-bounds write vulnerability exists in firmware.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. D-Link DSL-3782 is a wireless router from D-Link Company in Taiwan.
A buffer overflow vulnerability exists in D-Link DSL-3782, which stems from a stack-based buffer overflow in the getAttrValue method. No detailed vulnerability details are currently available
| VAR-202207-1929 | CVE-2022-27611 | Synology Inc. of Audio Station Past traversal vulnerability in |
CVSS V2: - CVSS V3: 8.1 Severity: HIGH |
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology Audio Station before 6.5.4-3367 allows remote authenticated users to delete arbitrary files via unspecified vectors. Synology Inc. of Audio Station Exists in a past traversal vulnerability.Information is tampered with and service operation is interrupted (DoS) It may be in a state
| VAR-202207-1998 | CVE-2022-22685 | Synology Inc. of webdav server Past traversal vulnerability in |
CVSS V2: - CVSS V3: 8.1 Severity: HIGH |
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology WebDAV Server before 2.4.0-0062 allows remote authenticated users to delete arbitrary files via unspecified vectors. Synology Inc. of webdav server Exists in a past traversal vulnerability.Information is tampered with and service operation is interrupted (DoS) It may be in a state. Synology WebDAV Server is an extension of HTTP developed by China Synology Company. Allows users to manage files stored on remote servers. Synology WebDAV Server versions prior to 2.4.0-0062 have a path traversal vulnerability
| VAR-202207-1940 | CVE-2022-27612 | Synology Inc. of Audio Station Classic buffer overflow vulnerability in |
CVSS V2: - CVSS V3: 9.8 Severity: CRITICAL |
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in cgi component in Synology Audio Station before 6.5.4-3367 allows remote attackers to execute arbitrary commands via unspecified vectors. Synology Inc. of Audio Station Exists in a classic buffer overflow vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Synology Audio Station is a way for users to store and share their music collections and connect to Internet radio stations from Synology China. Allows for high-quality playback on a variety of devices. There is a security vulnerability in versions prior to Synology Audio Station 6.5.4-3367
| VAR-202207-2025 | CVE-2022-27615 | Synology Inc. of DNS Server Past traversal vulnerability in |
CVSS V2: - CVSS V3: 8.1 Severity: HIGH |
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in cgi component in Synology DNS Server before 2.2.2-5027 allows remote authenticated users to delete arbitrary files via unspecified vectors. Synology Inc. of DNS Server Exists in a past traversal vulnerability.Information is tampered with and service operation is interrupted (DoS) It may be in a state
| VAR-202207-2011 | CVE-2022-22684 | Synology Inc. of DiskStation Manager In OS Command injection vulnerability |
CVSS V2: - CVSS V3: 7.2 Severity: HIGH |
Improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in task management component in Synology DiskStation Manager (DSM) before 6.2.4-25553 allows remote authenticated users to execute arbitrary commands via unspecified vectors. Synology Inc. of DiskStation Manager for, OS A command injection vulnerability exists.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Synology DiskStation Manager (DSM) is an operating system for network storage servers (NAS) developed by Synology, Taiwan. The operating system can manage data, documents, photos, music and other information
| VAR-202207-1999 | CVE-2022-27613 | Synology Inc. of CardDAV Server In SQL Injection vulnerability |
CVSS V2: - CVSS V3: 8.8 Severity: HIGH |
Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in webapi component in Synology CardDAV Server before 6.0.10-0153 allows remote authenticated users to inject SQL commands via unspecified vectors. Synology Inc. of CardDAV Server for, SQL There is an injection vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state