VARIoT IoT vulnerabilities database
| VAR-202107-1775 | No CVE | Unauthorized access vulnerability exists in ZXR10 6800 series |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
ZXR10 6800 series routers are a new generation of high-performance multi-service router products launched by ZTE Corporation.
The ZXR10 6800 series has an unauthorized access vulnerability. Attackers can use this vulnerability to access the background by constructing a specific URL.
| VAR-202107-0298 | CVE-2021-20507 | IBM Jazz Foundation and IBM Engineering Cross-site scripting vulnerabilities in products |
CVSS V2: 3.5 CVSS V3: 5.4 Severity: MEDIUM |
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 198235. Vendor exploits this vulnerability IBM X-Force ID: 198235 Is published as.Information may be obtained and information may be tampered with
| VAR-202107-1798 | No CVE | Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability (CNVD-2021-41100) |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment.
Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability. Attackers can use the vulnerability to cause a denial of service attack.
| VAR-202107-1803 | No CVE | Binary vulnerability exists in many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. (CNVD-2021-41107) |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment.
Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have binary vulnerabilities, which can be exploited by attackers to cause denial of service attacks.
| VAR-202107-1797 | No CVE | Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability (CNVD-2021-41102) |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment.
Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability. Attackers can use the vulnerability to cause a denial of service attack.
| VAR-202107-1806 | No CVE | Binary vulnerabilities exist in many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment.
Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have binary vulnerabilities, which can be exploited by attackers to cause denial of service attacks.
| VAR-202107-1795 | No CVE | Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability (CNVD-2021-41097) |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment.
Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability. Attackers can use the vulnerability to cause a denial of service attack.
| VAR-202107-1796 | No CVE | Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability (CNVD-2021-41099) |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment.
Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability. Attackers can use the vulnerability to cause a denial of service attack.
| VAR-202107-1776 | No CVE | A variety of AC routers from Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability (CNVD-2021-41101) |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment.
Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability. Attackers can use the vulnerability to cause a denial of service attack.
| VAR-202107-1903 | No CVE | Alibaba Smart APP has Janus vulnerability |
CVSS V2: 6.2 CVSS V3: - Severity: MEDIUM |
Ali Smart App is a mobile client made by Alibaba based on its Ali Smart Internet of Things platform.
Alibaba Smart APP has a Janus vulnerability, which can be exploited by an attacker to gain control of the server.
| VAR-202107-1906 | No CVE | New H3C SecPath ACG1000 has file inclusion vulnerabilities |
CVSS V2: 7.1 CVSS V3: - Severity: HIGH |
H3C SecPath ACG1000 is a new generation application control gateway.
H3C SecPath ACG1000 has a file inclusion vulnerability, which can be exploited by attackers to gain control of the server.
| VAR-202107-1801 | No CVE | Binary vulnerability exists in many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. (CNVD-2021-41105) |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment.
Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have binary vulnerabilities, which can be exploited by attackers to cause denial of service attacks.
| VAR-202107-1807 | No CVE | Many Tenda AC routers have stack buffer overflow vulnerabilities |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment.
Many Tenda AC routers have stack buffer overflow vulnerabilities, which can be exploited by attackers to cause denial of service attacks.
| VAR-202107-1802 | No CVE | Binary vulnerability exists in many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. (CNVD-2021-41106) |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment.
Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have binary vulnerabilities, which can be exploited by attackers to cause denial of service attacks.
| VAR-202107-1805 | No CVE | A variety of AC routers from Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment.
Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability. Attackers can use the vulnerability to cause a denial of service attack.
| VAR-202107-1804 | No CVE | Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability (CNVD-2021-41103) |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment.
Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability. Attackers can use the vulnerability to cause a denial of service attack.
| VAR-202107-1799 | No CVE | Schneider Electric (China) Co., Ltd. PowerLogic ION8600 has an unauthorized access vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Schneider Electric (China) Co., Ltd. is a company whose main business includes power, industrial automation, infrastructure, energy efficiency, energy, building automation and security electronics, data centers and smart living spaces.
Schneider Electric (China) Co., Ltd. PowerLogic ION8600 has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202107-1777 | No CVE | A variety of AC routers from Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability (CNVD-2021-41098) |
CVSS V2: 6.1 CVSS V3: - Severity: MEDIUM |
Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment.
Many AC routers of Shenzhen Jixiang Tengda Technology Co., Ltd. have a denial of service vulnerability. Attackers can use the vulnerability to cause a denial of service attack.
| VAR-202107-1208 | CVE-2021-3550 | Lenovo PCManager Vulnerability in Uncontrolled Search Path Elements |
CVSS V2: 4.6 CVSS V3: 7.8 Severity: HIGH |
A DLL search path vulnerability was reported in Lenovo PCManager, prior to version 3.0.500.5102, that could allow privilege escalation. Lenovo PCManager There is a vulnerability in an element of an uncontrolled search path.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. Lenovo Lenovo Pcmanager (Lenovo Computer Manager) is a software from China Lenovo Company that can comprehensively manage PC devices
| VAR-202107-1819 | No CVE | Information disclosure vulnerability exists in Meizu 16s pro |
CVSS V2: 4.7 CVSS V3: - Severity: MEDIUM |
Meizu 16s pro is a smart phone produced by Zhuhai Meizu Technology Co., Ltd.
Meizu 16s pro has an information disclosure vulnerability, which can be exploited by attackers to obtain sensitive information.