VARIoT IoT vulnerabilities database
| VAR-202106-2107 | No CVE | Unauthorized access vulnerability exists in Sony (China) Co., Ltd. DATA Projector |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Sony (China) Co., Ltd. was established by Sony Corporation in Beijing in October 1996 as a wholly-owned subsidiary that aims to unify the management and coordination of Sony's business activities in China.
Sony (China) Co., Ltd. DATA Projector has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2109 | No CVE | Unauthorized access vulnerability exists in Enterprise Device Manager |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Avaya, formerly known as the Lucent Technology Enterprise Network Department, is headquartered in New Jersey, USA, and officially became an independent listed company on October 1, 2000.
Enterprise Device Manager has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2110 | No CVE | Unauthorized access vulnerability exists in Extreme ERS3500 |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Extreme, business scope: research, development, and production of advanced voice and data communication network system products, system integration; technical consulting, technical services and technical training for self-produced products.
Extreme ERS3500 has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2111 | No CVE | MPEG4 DVR has weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
The MPEG Moving Picture Experts Group is an ISO/IEC working group responsible for formulating international standards concerning the compression, decompression, processing and encoding of moving images, audio and their combinations.
MPEG4 DVR has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2319 | No CVE | SuperE32 L601 RTU has a denial of service vulnerability |
CVSS V2: 4.9 CVSS V3: - Severity: MEDIUM |
SuperE32 L601 RTU is an integrated RTU of security technology, suitable for SCADA system.
SuperE32 L601 RTU has a denial of service vulnerability, which can be exploited by an attacker to cause a denial of service.
| VAR-202106-2321 | No CVE | The TRENDnet webcam has a weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
TRENDnet is one of the world's major data network professional manufacturers.
The TRENDnet webcam has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2323 | No CVE | Yongbo (Xiamen) Electrical Technology Co., Ltd. WinbowPLC has a binary vulnerability |
CVSS V2: 4.9 CVSS V3: - Severity: MEDIUM |
Yongbo (Xiamen) Electrical Technology Co., Ltd. was founded in 2010, focusing on overall motion control solutions, and is a professional motion control product and solution provider.
Yongbo (Xiamen) Electrical Technology Co., Ltd. WinbowPLC has a binary vulnerability, which can be exploited by attackers to cause a denial of service.
| VAR-202106-2339 | No CVE | Unauthorized access vulnerability exists in the operation and maintenance audit system of New H3C Technology Co., Ltd. |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
New H3C Technology Co., Ltd. is committed to becoming the most reliable partner for customers' business innovation and digital transformation. The main products are routers, big data, switches, Internet of Things, cloud computing, servers, etc.
The operation and maintenance audit system of New H3C Technology Co., Ltd. has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2108 | No CVE | Ruckus Wireless Ruckus R300 has weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Ruckus R300 is a wireless access point product of Ruckus Wireless.
Ruckus Wireless Ruckus R300 has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2112 | No CVE | Ruckus 7363 Multimedia Hotzone Wireless AP has weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Ruckus 7363 is a wireless product of Ruckus.
Ruckus 7363 Multimedia Hotzone Wireless AP has a weak password vulnerability. Attackers can use the vulnerability to log in to the system background and perform unauthorized operations.
| VAR-202106-2113 | No CVE | Ruckus Wireless Ruckus 7781CM has weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Ruckus 7781CM is a wireless access point product of Ruckus Wireless.
Ruckus Wireless Ruckus 7781CM has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2114 | No CVE | Ruckus Wireless Ruckus 7372 has weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Ruckus 7372 is a wireless access point product of Ruckus Wireless.
Ruckus Wireless Ruckus 7372 has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2115 | No CVE | Ruckus Wireless Ruckus T504 has weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Ruckus T504 is a wireless access point of Ruckus Wireless.
Ruckus Wireless Ruckus T504 has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2116 | No CVE | Ruckus Wireless Ruckus R310 has weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Ruckus R310 is a wireless access point product of Ruckus Wireless.
Ruckus Wireless Ruckus R310 has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2117 | No CVE | Ruckus Wireless Ruckus R510 has weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Ruckus R510 is a wireless access point product of Ruckus Wireless.
Ruckus Wireless Ruckus R510 has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2118 | No CVE | Ruckus Wireless Ruckus R500 has weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Ruckus R500 is a wireless access point product of Ruckus Wireless.
Ruckus Wireless Ruckus R500 has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2119 | No CVE | Ruckus Wireless Ruckus 2811 has weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Ruckus 2811 is a wireless router product of Ruckus Wireless.
Ruckus Wireless Ruckus 2811 has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2120 | No CVE | Ruckus Wireless Ruckus 2825 has weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
Ruckus 2825 is a wireless router product of Ruckus Wireless.
Ruckus Wireless Ruckus 2825 has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.
| VAR-202106-2122 | No CVE | Shenzhen Hongdian Technology Co., Ltd. 3G/4G Router has weak password vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
3G/4G Router is a router device of Shenzhen Hongdian Technology Co., Ltd.
Shenzhen Hongdian Technology Co., Ltd. 3G/4G Router has a weak password vulnerability. Attackers can use the vulnerability to obtain sensitive information.
| VAR-202106-2125 | No CVE | TP-Link TL-WR940N has a denial of service vulnerability |
CVSS V2: 4.9 CVSS V3: - Severity: MEDIUM |
TL-WR940N is a wireless router.
TP-Link TL-WR940N has a denial of service vulnerability, which can be exploited by an attacker to cause a program to crash.