VARIoT IoT vulnerabilities database
| VAR-202106-2195 | No CVE | Unauthorized access vulnerability exists in HP Officejet 5740 e-All-in-One Printer series |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
HP Officejet 5740 e-All-in-One Printer series is an all-in-one printer from HP Trading (Shanghai) Co., Ltd.
The HP Officejet 5740 e-All-in-One Printer series has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2203 | No CVE | Shenzhen Jixiang Tengda Technology Co., Ltd. AC11 has a binary vulnerability (CNVD-2021-35779) |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Tenda AC11 is a wireless router that uses RTOS operating system.
Shenzhen Jixiang Tengda Technology Co., Ltd. AC11 has a binary vulnerability, which can be exploited by attackers to cause a denial of service.
| VAR-202106-2194 | No CVE | AXIS M1124 Network Camera has unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Axis is an IT company that specializes in providing network video solutions.
AXIS M1124 Network Camera has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2299 | No CVE | Unauthorized access vulnerability exists in HP ENVY 5530 e-All-in-One Printer series |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
The HP ENVY 5530 e-All-in-One Printer series printer is an all-in-one printer from HP Trading (Shanghai) Co., Ltd.
The HP ENVY 5530 e-All-in-One Printer series printer has an unauthorized access vulnerability. Attackers can use this vulnerability to directly access the printer control interface without logging in.
| VAR-202106-2192 | No CVE | AXIS 225FD Network Camera has unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Axis is an IT company that specializes in providing network video solutions.
AXIS 225FD Network Camera has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2190 | No CVE | The camera of Zhejiang Dahua Technology Co., Ltd. has logic flaws and vulnerabilities |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Zhejiang Dahua Technology Co., Ltd. is a leading monitoring product supplier and solution service provider.
The camera of Zhejiang Dahua Technology Co., Ltd. has a logic flaw vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2197 | No CVE | H3C SecPath U200-M has SQL injection vulnerability |
CVSS V2: 7.8 CVSS V3: - Severity: HIGH |
H3C SecPath U200-M is a new generation of UTM (United Threat Management) equipment designed by H3C for small and medium-sized enterprises/branches.
Xin H3C SecPath U200-M has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information in the database.
| VAR-202106-2202 | No CVE | Shenzhen Infinova Technology Co., Ltd. INFINOVA NVR has command execution |
CVSS V2: 7.1 CVSS V3: - Severity: HIGH |
Infinova is the world's leading manufacturer of electronic security products and industry solutions provider.
Shenzhen Infinova Technology Co., Ltd. INFINOVA NVR has command execution. Attackers can use this vulnerability to gain control of the server.
| VAR-202106-2201 | No CVE | Shenzhen Jixiang Tengda Technology Co., Ltd. AC11 has a denial of service vulnerability (CNVD-2021-35780) |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Tenda AC11 is a wireless router that uses RTOS operating system.
Shenzhen Jixiang Tengda Technology Co., Ltd. AC11 has a denial of service vulnerability, which can be exploited by attackers to cause a denial of service attack.
| VAR-202106-2189 | No CVE | The intelligent transportation terminal management equipment of Zhejiang Dahua Technology Co., Ltd. has logic defects and vulnerabilities |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Zhejiang Dahua Technology Co., Ltd. is a smart IoT solution provider and operation service provider with video as the core.
The intelligent transportation terminal management equipment of Zhejiang Dahua Technology Co., Ltd. has a logic flaw vulnerability, which can be used by attackers to obtain sensitive information.
| VAR-202106-2320 | No CVE | Unauthorized access vulnerability exists in Lexmark M series |
CVSS V2: 6.4 CVSS V3: - Severity: MEDIUM |
The Lexmark M series is a product of Lexmark. Lexmark M is an M series printer.
Lexmark M series has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2191 | No CVE | AXIS 209MFD Network Camera has unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Axis is an IT company that specializes in providing network video solutions.
AXIS 209MFD Network Camera has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2196 | No CVE | Unauthorized access vulnerability exists in HP Officejet 4630 e-All-in-One Printer series |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
HP Officejet 4630 e-All-in-One Printer series is an all-in-one printer from HP Trading (Shanghai) Co., Ltd.
The HP Officejet 4630 e-All-in-One Printer series has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2193 | No CVE | AXIS M1125 Network Camera has unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Axis is an IT company that specializes in providing network video solutions.
AXIS M1125 Network Camera has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2200 | No CVE | Shenzhen Jixiang Tengda Technology Co., Ltd. AC11 has a denial of service vulnerability (CNVD-2021-35783) |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Tenda AC11 is a wireless router that uses RTOS operating system.
Shenzhen Jixiang Tengda Technology Co., Ltd. AC11 has a denial of service vulnerability, which can be exploited by attackers to cause a denial of service attack.
| VAR-202106-2198 | No CVE | Shenzhen Jixiang Tengda Technology Co., Ltd. AC11 has a denial of service vulnerability (CNVD-2021-35781) |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Tenda AC11 is a wireless router that uses RTOS operating system.
Shenzhen Jixiang Tengda Technology Co., Ltd. AC11 has a denial of service vulnerability, which can be exploited by attackers to cause a denial of service attack.
| VAR-202106-2205 | No CVE | Shenzhen Infinova Technology Co., Ltd. INFINOVA NVR has weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Infinova is the world's leading manufacturer of electronic security products and industry solutions provider.
Shenzhen Infinova Technology Co., Ltd. INFINOVA NVR has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2206 | No CVE | Archer C50 router has weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
TP-LINK Technology Co., Ltd. (hereinafter referred to as "TP-LINK") is the world's leading supplier of network communication equipment.
The Archer C50 router has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2199 | No CVE | Shenzhen Jixiang Tengda Technology Co., Ltd. AC11 has a denial of service vulnerability (CNVD-2021-35782) |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Tenda AC11 is a wireless router that uses RTOS operating system.
Shenzhen Jixiang Tengda Technology Co., Ltd. AC11 has a denial of service vulnerability, which can be exploited by attackers to cause a denial of service attack.
| VAR-202106-2297 | No CVE | HP ENVY 5540 All-in-One Printer series printer has unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
HP ENVY 5540 All-in-One Printer series printer is an all-in-one printer from Hewlett-Packard Company.
The HP ENVY 5540 All-in-One Printer series printer has an unauthorized access vulnerability. Attackers can use this vulnerability to directly access the printer control interface without logging in.