VARIoT IoT vulnerabilities database

Affected products: vendor, model and version
CWE format is 'CWE-number'. Threat type can be: remote or local
Look up free text in title and description

VAR-202205-1536 CVE-2022-20809 Cisco Expressway  Series and  Cisco TelePresence Video Communication Server  Vulnerability regarding information leakage from log files in CVSS V2: 3.5
CVSS V3: 6.5
Severity: MEDIUM
Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker to write files or disclose sensitive information on an affected device. For more information about these vulnerabilities, see the Details section of this advisory. Cisco Expressway Series is a software for accessing devices outside the firewall. The software provides simple, highly secure access for users outside the firewall, helping remote workers work more efficiently on the device of their choice. An attacker could exploit this vulnerability to view the credentials of other users sharing the device. Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. This advisory is available at the following link:tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-expressway-filewrite-bsFVwueV
VAR-202205-1549 CVE-2022-28955 D-Link DIR816 Access Control Error Vulnerability CVSS V2: 5.0
CVSS V3: 7.5
Severity: HIGH
An access control issue in D-Link DIR816L_FW206b01 allows unauthenticated attackers to access folders folder_view.php and category_view.php. D-Link DIR816 is a wireless router from D-Link Company in Taiwan
VAR-202205-1522 CVE-2022-29644 TOTOLINK A3100R Trust Management Issue Vulnerability CVSS V2: 10.0
CVSS V3: 9.8
Severity: CRITICAL
TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a hard coded password for the telnet service stored in the component /web_cste/cgi-bin/product.ini. TOTOLINK A3100R is a series of wireless routers from the Chinese company TOTOLINK. TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 have a trust management issue vulnerability that stems from a hardcoded password in the component /web_cste/cgi-bin/product.ini. No detailed vulnerability details are currently provided
VAR-202205-1538 CVE-2021-42848 plural  Lenovo  Vulnerability regarding lack of certification in products CVSS V2: 5.0
CVSS V3: 5.3
Severity: MEDIUM
An information disclosure vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an unauthenticated user to retrieve device and networking details. a1 firmware, t1 firmware, x1 firmware etc. Lenovo The product contains a vulnerability related to lack of certification.Information may be obtained
VAR-202205-1481 CVE-2022-29645 TOTOLINK A3100R Vulnerability in Trust Management Issue CVSS V2: 10.0
CVSS V3: 9.8
Severity: CRITICAL
TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a hard coded password for root stored in the component /etc/shadow.sample. TOTOLINK A3100R is a wireless router. TOTOLINK A3100R has a trust management issue vulnerability, which can be exploited by attackers to obtain the root password
VAR-202205-1515 CVE-2021-42852 Lenovo Personal Cloud Storage Operating system command injection vulnerability CVSS V2: 7.7
CVSS V3: 8.0
Severity: HIGH
A command injection vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an authenticated user to execute operating system commands by sending a crafted packet to the device
VAR-202205-1532 CVE-2022-30033 Tenda TX9 Pro buffer overflow vulnerability CVSS V2: 7.8
CVSS V3: 7.5
Severity: HIGH
Tenda TX9 Pro V22.03.02.10 is vulnerable to Buffer Overflow via the functtion setIPv6Status() in httpd module. The Tenda TX9 Pro is a dual-band Wi-Fi 6 router from the Chinese company Tenda
VAR-202205-1507 CVE-2022-29640 TOTOLINK A3100R setportforwarrules function buffer overflow vulnerability CVSS V2: 7.8
CVSS V3: 7.5
Severity: HIGH
TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a stack overflow via the comment parameter in the function setPortForwardRules. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request. TOTOLINK A3100R is a series of wireless routers from the Chinese company TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK A3100R setportforwarrules function
VAR-202205-1557 CVE-2022-20806 Cisco Expressway Series  and  Cisco TelePresence Video Communication Server  Vulnerability regarding information leakage from log files in CVSS V2: 5.5
CVSS V3: 7.1
Severity: HIGH
Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker to write files or disclose sensitive information on an affected device. For more information about these vulnerabilities, see the Details section of this advisory. Cisco Expressway Series is a software for accessing devices outside the firewall. The software provides simple, highly secure access for users outside the firewall, helping remote workers work more efficiently on the device of their choice. Cisco TelePresence Video Communication Server is a video communication server. An attacker could exploit this vulnerability by authenticating to the device. Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. This advisory is available at the following link:tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-expressway-filewrite-bsFVwueV
VAR-202205-1550 CVE-2022-29642 TOTOLINK A3100R setUrlFilterRules function buffer overflow vulnerability CVSS V2: 7.8
CVSS V3: 7.5
Severity: HIGH
TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a stack overflow via the url parameter in the function setUrlFilterRules. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request. TOTOLINK A3100R is a series of wireless routers from the Chinese company TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK A3100R setUrlFilterRules function
VAR-202205-1565 CVE-2021-38944 IBM DataPower Gateway  Cross-site scripting vulnerability in CVSS V2: 4.3
CVSS V3: 6.1
Severity: MEDIUM
IBM DataPower Gateway 10.0.2.0 through 1.0.3.0, 10.0.1.0 through 10.0.1.5, and 2018.4.1.0 through 2018.4.1.18 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an attacker to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or session hijacking. IBM X-Force ID: 211236. IBM DataPower Gateway Exists in a cross-site scripting vulnerability. Vendor exploits this vulnerability IBM X-Force ID: 211236 It is published as.Information may be obtained and information may be tampered with. IBM DataPower Gateway is a security and integration platform specially designed for mobile, cloud, application programming interface (API), network, service-oriented architecture (SOA), B2B and cloud workloads. The platform secures, integrates and optimizes access across channels with a dedicated gateway platform
VAR-202205-1556 CVE-2022-20765 Cisco UCS Director  Cross-site scripting vulnerability in CVSS V2: 3.5
CVSS V3: 4.8
Severity: MEDIUM
A vulnerability in the web applications of Cisco UCS Director could allow an authenticated, remote attacker to conduct a cross-site scripting attack on an affected system. This vulnerability is due to unsanitized user input. An attacker could exploit this vulnerability by submitting custom JavaScript to affected web applications. A successful exploit could allow the attacker to rewrite web page content, access sensitive information stored in the applications, and alter data by submitting forms. Cisco UCS Director Exists in a cross-site scripting vulnerability.Information may be obtained and information may be tampered with. Cisco UCS Director is a heterogeneous platform of private cloud infrastructure as a service (IaaS) of Cisco (Cisco). Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link:tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-UCS-XSS-uQSME3L7
VAR-202205-1502 CVE-2021-42850 Lenovo Personal Cloud Storage Trust Management Issue Vulnerability CVSS V2: 4.6
CVSS V3: 7.8
Severity: HIGH
A weak default administrator password for the web interface and serial port was reported in some Lenovo Personal Cloud Storage devices that could allow unauthorized device access to an attacker with physical or local network access
VAR-202205-1554 CVE-2022-20802 Cisco Enterprise Chat and Email  Cross-site scripting vulnerability in CVSS V2: 3.5
CVSS V3: 5.4
Severity: MEDIUM
A vulnerability in the web interface of Cisco Enterprise Chat and Email (ECE) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input that is processed by the web interface. An attacker could exploit this vulnerability by sending a crafted HTTP request to the affected system. A successful exploit could allow the attacker to execute arbitrary code in the context of the interface or access sensitive, browser-based information. To successfully exploit this vulnerability, an attacker would need valid agent credentials. This product mainly provides e-mail, chat and Web callback functions for other Cisco solutions. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link:tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ece-strd-xss-BqFXO9D2
VAR-202205-1591 CVE-2022-26773 Windows  for  iTunes  Vulnerability in CVSS V2: 5.8
CVSS V3: 7.1
Severity: HIGH
A logic issue was addressed with improved state management. This issue is fixed in iTunes 12.12.4 for Windows. An application may be able to delete files for which it does not have permission. Windows for iTunes Exists in unspecified vulnerabilities.Information is tampered with and service operation is interrupted (DoS) It may be in a state. This vulnerability allows local attackers to escalate privileges on affected installations of Apple iTunes. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.The specific flaw exists within the Apple Mobile Device Service. The issue results from incorrect permissions set on a resource used by the service. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM
VAR-202205-1578 CVE-2021-42851 Lenovo Personal Cloud Storage Security hole CVSS V2: 5.0
CVSS V3: 5.3
Severity: MEDIUM
A vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an unauthenticated user to create a standard user account
VAR-202205-1506 CVE-2022-29639 TotoLink A3100R Command Injection Vulnerability (CNVD-2022-54652) CVSS V2: 9.3
CVSS V3: 8.1
Severity: HIGH
TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a command injection vulnerability via the magicid parameter in the function uci_cloudupdate_config. TotoLink A3100R is a series of wireless routers from TotoLink, a Taiwanese company. of the constructed command. Attackers can exploit this vulnerability Causes arbitrary command execution
VAR-202205-1524 CVE-2021-41946 FiberHome VDSL2 Modem HG150-Ub Cross-Site Scripting Vulnerability CVSS V2: 3.5
CVSS V3: 5.4
Severity: MEDIUM
In FiberHome VDSL2 Modem HG150-Ub_V3.0, a stored cross-site scripting (XSS) vulnerability in Parental Control --> Access Time Restriction --> Username field, a user cannot delete the rule due to the XSS. FiberHome VDSL2 Modem HG150-Ub is a router device of FiberHome Company. FiberHome VDSL2 Modem HG150-Ub V3.0 has a cross-site scripting vulnerability, which stems from the lack of program validation and filtering of user-supplied data and output data. Attackers can exploit this vulnerability to conduct cross-site scripting (XSS) attacks
VAR-202205-1613 CVE-2022-28917 Tenda AX12 Buffer Overflow Vulnerability (CNVD-2022-42152) CVSS V2: 7.8
CVSS V3: 7.5
Severity: HIGH
Tenda AX12 v22.03.01.21_cn was discovered to contain a stack overflow via the lanIp parameter in /goform/AdvSetLanIp. Tenda AX12 is a dual-band Gigabit Wifi 6 wireless router from the Chinese company Tenda
VAR-202205-1523 CVE-2022-29646 TotoLink A3100R Access Control Error Vulnerability (CNVD-2022-54651) CVSS V2: 5.0
CVSS V3: 5.3
Severity: MEDIUM
An access control issue in TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 allows attackers to obtain sensitive information via a crafted web request. TotoLink A3100R is a series of wireless routers from TotoLink, a Taiwanese company