VARIoT IoT vulnerabilities database
| VAR-202205-1536 | CVE-2022-20809 | Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerability regarding information leakage from log files in |
CVSS V2: 3.5 CVSS V3: 6.5 Severity: MEDIUM |
Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker to write files or disclose sensitive information on an affected device. For more information about these vulnerabilities, see the Details section of this advisory. Cisco Expressway Series is a software for accessing devices outside the firewall. The software provides simple, highly secure access for users outside the firewall, helping remote workers work more efficiently on the device of their choice. An attacker could exploit this vulnerability to view the credentials of other users sharing the device.
Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.
This advisory is available at the following link:tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-expressway-filewrite-bsFVwueV
| VAR-202205-1549 | CVE-2022-28955 | D-Link DIR816 Access Control Error Vulnerability |
CVSS V2: 5.0 CVSS V3: 7.5 Severity: HIGH |
An access control issue in D-Link DIR816L_FW206b01 allows unauthenticated attackers to access folders folder_view.php and category_view.php. D-Link DIR816 is a wireless router from D-Link Company in Taiwan
| VAR-202205-1522 | CVE-2022-29644 | TOTOLINK A3100R Trust Management Issue Vulnerability |
CVSS V2: 10.0 CVSS V3: 9.8 Severity: CRITICAL |
TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a hard coded password for the telnet service stored in the component /web_cste/cgi-bin/product.ini. TOTOLINK A3100R is a series of wireless routers from the Chinese company TOTOLINK.
TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 have a trust management issue vulnerability that stems from a hardcoded password in the component /web_cste/cgi-bin/product.ini. No detailed vulnerability details are currently provided
| VAR-202205-1538 | CVE-2021-42848 | plural Lenovo Vulnerability regarding lack of certification in products |
CVSS V2: 5.0 CVSS V3: 5.3 Severity: MEDIUM |
An information disclosure vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an unauthenticated user to retrieve device and networking details. a1 firmware, t1 firmware, x1 firmware etc. Lenovo The product contains a vulnerability related to lack of certification.Information may be obtained
| VAR-202205-1481 | CVE-2022-29645 | TOTOLINK A3100R Vulnerability in Trust Management Issue |
CVSS V2: 10.0 CVSS V3: 9.8 Severity: CRITICAL |
TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a hard coded password for root stored in the component /etc/shadow.sample. TOTOLINK A3100R is a wireless router.
TOTOLINK A3100R has a trust management issue vulnerability, which can be exploited by attackers to obtain the root password
| VAR-202205-1515 | CVE-2021-42852 | Lenovo Personal Cloud Storage Operating system command injection vulnerability |
CVSS V2: 7.7 CVSS V3: 8.0 Severity: HIGH |
A command injection vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an authenticated user to execute operating system commands by sending a crafted packet to the device
| VAR-202205-1532 | CVE-2022-30033 | Tenda TX9 Pro buffer overflow vulnerability |
CVSS V2: 7.8 CVSS V3: 7.5 Severity: HIGH |
Tenda TX9 Pro V22.03.02.10 is vulnerable to Buffer Overflow via the functtion setIPv6Status() in httpd module. The Tenda TX9 Pro is a dual-band Wi-Fi 6 router from the Chinese company Tenda
| VAR-202205-1507 | CVE-2022-29640 | TOTOLINK A3100R setportforwarrules function buffer overflow vulnerability |
CVSS V2: 7.8 CVSS V3: 7.5 Severity: HIGH |
TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a stack overflow via the comment parameter in the function setPortForwardRules. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request. TOTOLINK A3100R is a series of wireless routers from the Chinese company TOTOLINK.
A buffer overflow vulnerability exists in the TOTOLINK A3100R setportforwarrules function
| VAR-202205-1557 | CVE-2022-20806 | Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerability regarding information leakage from log files in |
CVSS V2: 5.5 CVSS V3: 7.1 Severity: HIGH |
Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker to write files or disclose sensitive information on an affected device. For more information about these vulnerabilities, see the Details section of this advisory. Cisco Expressway Series is a software for accessing devices outside the firewall. The software provides simple, highly secure access for users outside the firewall, helping remote workers work more efficiently on the device of their choice. Cisco TelePresence Video Communication Server is a video communication server. An attacker could exploit this vulnerability by authenticating to the device.
Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.
This advisory is available at the following link:tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-expressway-filewrite-bsFVwueV
| VAR-202205-1550 | CVE-2022-29642 | TOTOLINK A3100R setUrlFilterRules function buffer overflow vulnerability |
CVSS V2: 7.8 CVSS V3: 7.5 Severity: HIGH |
TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a stack overflow via the url parameter in the function setUrlFilterRules. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request. TOTOLINK A3100R is a series of wireless routers from the Chinese company TOTOLINK.
A buffer overflow vulnerability exists in the TOTOLINK A3100R setUrlFilterRules function
| VAR-202205-1565 | CVE-2021-38944 | IBM DataPower Gateway Cross-site scripting vulnerability in |
CVSS V2: 4.3 CVSS V3: 6.1 Severity: MEDIUM |
IBM DataPower Gateway 10.0.2.0 through 1.0.3.0, 10.0.1.0 through 10.0.1.5, and 2018.4.1.0 through 2018.4.1.18 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an attacker to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or session hijacking. IBM X-Force ID: 211236. IBM DataPower Gateway Exists in a cross-site scripting vulnerability. Vendor exploits this vulnerability IBM X-Force ID: 211236 It is published as.Information may be obtained and information may be tampered with. IBM DataPower Gateway is a security and integration platform specially designed for mobile, cloud, application programming interface (API), network, service-oriented architecture (SOA), B2B and cloud workloads. The platform secures, integrates and optimizes access across channels with a dedicated gateway platform
| VAR-202205-1556 | CVE-2022-20765 | Cisco UCS Director Cross-site scripting vulnerability in |
CVSS V2: 3.5 CVSS V3: 4.8 Severity: MEDIUM |
A vulnerability in the web applications of Cisco UCS Director could allow an authenticated, remote attacker to conduct a cross-site scripting attack on an affected system. This vulnerability is due to unsanitized user input. An attacker could exploit this vulnerability by submitting custom JavaScript to affected web applications. A successful exploit could allow the attacker to rewrite web page content, access sensitive information stored in the applications, and alter data by submitting forms. Cisco UCS Director Exists in a cross-site scripting vulnerability.Information may be obtained and information may be tampered with. Cisco UCS Director is a heterogeneous platform of private cloud infrastructure as a service (IaaS) of Cisco (Cisco).
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link:tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-UCS-XSS-uQSME3L7
| VAR-202205-1502 | CVE-2021-42850 | Lenovo Personal Cloud Storage Trust Management Issue Vulnerability |
CVSS V2: 4.6 CVSS V3: 7.8 Severity: HIGH |
A weak default administrator password for the web interface and serial port was reported in some Lenovo Personal Cloud Storage devices that could allow unauthorized device access to an attacker with physical or local network access
| VAR-202205-1554 | CVE-2022-20802 | Cisco Enterprise Chat and Email Cross-site scripting vulnerability in |
CVSS V2: 3.5 CVSS V3: 5.4 Severity: MEDIUM |
A vulnerability in the web interface of Cisco Enterprise Chat and Email (ECE) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input that is processed by the web interface. An attacker could exploit this vulnerability by sending a crafted HTTP request to the affected system. A successful exploit could allow the attacker to execute arbitrary code in the context of the interface or access sensitive, browser-based information. To successfully exploit this vulnerability, an attacker would need valid agent credentials. This product mainly provides e-mail, chat and Web callback functions for other Cisco solutions.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link:tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ece-strd-xss-BqFXO9D2
| VAR-202205-1591 | CVE-2022-26773 | Windows for iTunes Vulnerability in |
CVSS V2: 5.8 CVSS V3: 7.1 Severity: HIGH |
A logic issue was addressed with improved state management. This issue is fixed in iTunes 12.12.4 for Windows. An application may be able to delete files for which it does not have permission. Windows for iTunes Exists in unspecified vulnerabilities.Information is tampered with and service operation is interrupted (DoS) It may be in a state. This vulnerability allows local attackers to escalate privileges on affected installations of Apple iTunes. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.The specific flaw exists within the Apple Mobile Device Service. The issue results from incorrect permissions set on a resource used by the service. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM
| VAR-202205-1578 | CVE-2021-42851 | Lenovo Personal Cloud Storage Security hole |
CVSS V2: 5.0 CVSS V3: 5.3 Severity: MEDIUM |
A vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow an unauthenticated user to create a standard user account
| VAR-202205-1506 | CVE-2022-29639 | TotoLink A3100R Command Injection Vulnerability (CNVD-2022-54652) |
CVSS V2: 9.3 CVSS V3: 8.1 Severity: HIGH |
TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a command injection vulnerability via the magicid parameter in the function uci_cloudupdate_config. TotoLink A3100R is a series of wireless routers from TotoLink, a Taiwanese company. of the constructed command. Attackers can exploit this vulnerability Causes arbitrary command execution
| VAR-202205-1524 | CVE-2021-41946 | FiberHome VDSL2 Modem HG150-Ub Cross-Site Scripting Vulnerability |
CVSS V2: 3.5 CVSS V3: 5.4 Severity: MEDIUM |
In FiberHome VDSL2 Modem HG150-Ub_V3.0, a stored cross-site scripting (XSS) vulnerability in Parental Control --> Access Time Restriction --> Username field, a user cannot delete the rule due to the XSS. FiberHome VDSL2 Modem HG150-Ub is a router device of FiberHome Company.
FiberHome VDSL2 Modem HG150-Ub V3.0 has a cross-site scripting vulnerability, which stems from the lack of program validation and filtering of user-supplied data and output data. Attackers can exploit this vulnerability to conduct cross-site scripting (XSS) attacks
| VAR-202205-1613 | CVE-2022-28917 | Tenda AX12 Buffer Overflow Vulnerability (CNVD-2022-42152) |
CVSS V2: 7.8 CVSS V3: 7.5 Severity: HIGH |
Tenda AX12 v22.03.01.21_cn was discovered to contain a stack overflow via the lanIp parameter in /goform/AdvSetLanIp. Tenda AX12 is a dual-band Gigabit Wifi 6 wireless router from the Chinese company Tenda
| VAR-202205-1523 | CVE-2022-29646 | TotoLink A3100R Access Control Error Vulnerability (CNVD-2022-54651) |
CVSS V2: 5.0 CVSS V3: 5.3 Severity: MEDIUM |
An access control issue in TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 allows attackers to obtain sensitive information via a crafted web request. TotoLink A3100R is a series of wireless routers from TotoLink, a Taiwanese company