VARIoT IoT vulnerabilities database

ER5200G2, ER3100G2, and ER3260G2 are a new generation of high-performance enterprise-class routers launched by New H3C Technology Co., Ltd. New H3C Technology Co., Ltd. ER5200G2, ER3100G2, and ER3260G2 have weak password vulnerabilities, which can be exploited by attackers to obtain sensitive information.

NR238 is a router of Shenzhen Leike Industrial Co., Ltd. Shenzhen Leike Industrial Co., Ltd. NR238 has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.

There is a buffer overflow vulnerability in the Web server httpd of the router in Tenda router devices such as Tenda AC9 V1.0 V15.03.02.19(6318) and Tenda AC9 V3.0 V15.03.06.42_multi. When setting the virtual service, the httpd program will crash and exit when the super-long list parameter occurs. Shenzhen Tenda Technology Co.,Ltd. of AC9 A buffer error vulnerability exists in the firmware.Service operation interruption (DoS) It may be in a state. AC9 is a 1200M 11AC wireless router with Gigabit Ethernet port launched by Shenzhen Jixiang Tengda Technology Co., Ltd. in 2016. Tenda AC9 has a denial of service vulnerability, which can be exploited by attackers to cause the program to crash

DSL-2730E is a router of D-Link Electronic Equipment (Shanghai) Co., Ltd. D-Link Electronic Equipment (Shanghai) Co., Ltd. DSL-2730E has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.

NR255P is a new generation of high-performance QOS router developed by Shenzhen Leike Industrial Co., Ltd., which is tailor-made for small businesses, tiny Internet cafes, and rental houses. Shenzhen Leike Industrial Co., Ltd. NR255P has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.

AC9 is a 1200M 11AC wireless router with Gigabit Ethernet port launched by Shenzhen Jixiang Tengda Technology Co., Ltd. in 2016. Tenda AC9 has a denial of service vulnerability, which can be exploited by attackers to cause the program to crash.

ER5100 is a high-performance gigabit router tailored for small and medium-sized enterprises, Internet cafes, schools and other institutions. ER5200G2 is a new generation of enterprise-class gigabit high-performance router. GR5200 is an enterprise-class gigabit router. Many H3C routers have weak password vulnerabilities, which can be exploited by attackers to obtain sensitive information.

Bihaiwei L7 home gateway is a home gateway launched by Beijing Bihaiwei Technology Co., Ltd. Bihaiwei L7 home gateway has weak password vulnerability. Attackers can use this vulnerability to log in to the background of the system to obtain sensitive information.

Shenzhen Jixiang Tengda Technology Co., Ltd. (hereinafter referred to as "Tengda") was founded in 1999. It is a professional supplier of network communication equipment and solutions, as well as a high-tech enterprise integrating R&D, production, supply, sales and service. The se*** interface of Tenda 11AC 1200MBPS wireless panel AP has a stack overflow vulnerability. Attackers can use this vulnerability to gain control of the server.

Hangzhou Guanhang Technology Co., Ltd. is an innovative intelligent network solution manufacturer. Committed to the development and application of enterprise-level wireless networks, Internet of Things and smart switch products, it is a next-generation enterprise-level wireless, Internet of Things and switch solutions manufacturer. Hangzhou Guanhang Technology Co., Ltd. GS series enterprise application gateways have a weak password vulnerability. Attackers can use the vulnerability to log in to the system backend to obtain sensitive information.

NR235P is a type of broadband router for small business equipment. Shenzhen Leike Industrial Co., Ltd. NR235P has a weak password vulnerability. Attackers can use weak passwords to log in to the background to obtain sensitive information.

H3C NER324 is a new generation of enterprise-level gigabit high-performance router launched by New H3C Technology Co., Ltd. It is positioned in the cultural industry market such as Internet cafes, singing bars, and digital cinemas. H3C NER324 has a weak password vulnerability. Attackers can use the vulnerability to log in to the device with the default password to obtain sensitive information.

Chengdu Feiyuxing Technology Co., Ltd. was established in 2002 as a high-tech enterprise focusing on product innovation and research and development in the data communication industry and the Internet of Things industry. Volans of Feiyuxing Technology Development Co., Ltd. has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.

SRG1220w is a router. HUAWEI SRG1220w has a weak password vulnerability. Attackers can use this vulnerability to obtain sensitive information.

Ruijie Networks Co., Ltd. is a data communication solution provider. NBR routers have weak password vulnerabilities. Attackers can use the vulnerability to log in to the device with a weak password to obtain sensitive information.

Secoway USG2160BSR is a firewall of Huawei Technologies Co., Ltd., Huawei SRG3230 is a gateway, and Huawei SRG1220 is a router of Huawei Technologies Co., Ltd. Many Huawei products have weak password vulnerabilities, which can be exploited by attackers to obtain sensitive information.

ER5100 is a high-performance gigabit downstream router. ER5200G2 is a new generation of enterprise-class gigabit high-performance router. GR5200 is a new generation of high-performance enterprise-class routers. Many products of New H3C Technology Co., Ltd. have weak password vulnerabilities, which can be exploited by attackers to obtain sensitive information.

TL-ER2220G is a dual-core multi-WAN port gigabit enterprise VPN router from Prolink Technology Co., Ltd. Universal Technology Co., Ltd. USG2130 has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.

An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer overflow vulnerability in /goform/setmac allows attackers to execute arbitrary code on the system via a crafted post request. Tenda AC11 The device contains an out-of-bounds write vulnerability.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. Tenda AC11 is an AC1200 dual-band Gigabit WiFi router

WebAccess/HMI Designer is a man-machine interface integrated development tool. WebAccess/HMI Designer has a denial of service vulnerability, which can be exploited by an attacker to cause a denial of service.