VARIoT IoT vulnerabilities database
| VAR-202108-0598 | CVE-2021-29979 | Hubs Cloud Cross-site Scripting Vulnerability |
CVSS V2: 4.3 CVSS V3: 6.1 Severity: MEDIUM |
Hubs Cloud allows users to download shared content, specifically HTML and JS, which could allow javascript execution in the Hub Cloud instance’s primary hosting domain.*. This vulnerability affects Hubs Cloud < mozillareality/reticulum/1.0.1/20210618012634. Hubs Cloud Contains a cross-site scripting vulnerability.Information may be obtained and information may be tampered with
| VAR-202108-2485 | No CVE | AXIS P5522-E Network Camera has unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Axis is an IT company that specializes in providing network video solutions.
AXIS P5522-E Network Camera has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2499 | No CVE | Unauthorized access vulnerability exists in Cisco IP Phone CP-7970G |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Cisco IP Phone CP-7970G is an IP phone.
The Cisco IP Phone CP-7970G has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2483 | No CVE | AXIS P1224-E Network Camera has unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Axis is an IT company that specializes in providing network video solutions.
AXIS P1224-E Network Camera has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2331 | No CVE | Shenzhen Jixiang Tengda Technology Co., Ltd. wireless signal extender has an unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment.
The wireless signal extender of Shenzhen Jixiang Tengda Technology Co., Ltd. has an unauthorized access vulnerability. Attackers can use the vulnerability to obtain sensitive information.
| VAR-202108-2497 | No CVE | AXIS Q7424-R Video Encoder has unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Axis is an IT company that specializes in providing network video solutions.
AXIS Q7424-R Video Encoder has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2333 | No CVE | Anbottom Deep Security Gateway has file download vulnerabilities |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Beijing Anbotong Technology Co., Ltd. is a dedicated core system product and security service provider for visual network security.
Ambton Deep Security Gateway has a file download vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2488 | No CVE | Dell B2375dfw Mono MFP has unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
B2375dfw Mono MFP is a printer from Dell.
Dell B2375dfw Mono MFP has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2489 | No CVE | Unauthorized access vulnerability exists in Dell Printer E310dw |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Printer E310dwr is a printer from Dell.
Dell Printer E310dw has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2498 | No CVE | Unauthorized access vulnerability exists in Cisco IP Phone CP-7911G |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Cisco IP Phone CP-7911G is an IP phone.
Cisco IP Phone CP-7911G has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2487 | No CVE | AXIS P1214-E Network Camera has unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Axis is an IT company that specializes in providing network video solutions.
AXIS P1214-E Network Camera has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2494 | No CVE | Unauthorized access vulnerability exists in Cisco IP Phone CP-8861 |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Cisco IP Phone CP-8861 is an enterprise-class IP phone.
Cisco IP Phone CP-8861 has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2486 | No CVE | AXIS Q6044-E Network Camera has unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Axis is an IT company that specializes in providing network video solutions.
AXIS Q6044-E Network Camera has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2500 | No CVE | KYOCERA ECOSYS M5520cdn has weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
ECOSYS M5520cdn is an all-in-one printer.
KYOCERA ECOSYS M5520cdn has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2484 | No CVE | AXIS P5512-E Network Camera has unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Axis is an IT company that specializes in providing network video solutions.
AXIS P5512-E Network Camera has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2496 | No CVE | AXIS Q6045-E Network Camera has unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Axis is an IT company that specializes in providing network video solutions.
AXIS Q6045-E Network Camera has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2490 | No CVE | Dell B2375dnf Mono MFP has unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
B2375dnf Mono MFP is a printer from Dell.
Dell B2375dnf Mono MFP has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2495 | No CVE | AXIS Q6115-E Network Camera has unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Axis is an IT company that specializes in providing network video solutions.
AXIS Q6115-E Network Camera has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2492 | No CVE | Unauthorized access vulnerability exists in Cisco IP Phone CP-8851 |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Cisco IP Phone CP-8851 is an enterprise-class IP phone.
Cisco IP Phone CP-8851 has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202108-2493 | No CVE | Unauthorized access vulnerability exists in Cisco IP Phone CP-8841 |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Cisco IP Phone CP-8841 is an enterprise-class IP phone.
Cisco IP Phone CP-8841 has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.