VARIoT IoT vulnerabilities database

Kyan is a network monitoring device. Kyan network monitoring equipment has an information disclosure vulnerability, which can be exploited by attackers to obtain sensitive information.

RG-NBR800GW is an Internet behavior management router launched by Ruijie. It is a router designed for all office scenarios. Ruijie Networks Co., Ltd. RG-NBR800GW has a weak password vulnerability. Attackers can use the vulnerability to obtain sensitive information.

RG-NBR700W is an Internet behavior management router, which is specially designed for all office scenarios. Ruijie Networks Co., Ltd. RG-NBR700W has a weak password vulnerability. Attackers can use the vulnerability to obtain sensitive information.

W908-A10000 is a wireless controller of ZTE Corporation. ZTE Corporation W908-A10000 has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.

Ruijie Networks Co., Ltd. is a professional network manufacturer with a full range of network equipment product lines and solutions including switches, routers, software, security firewalls, wireless products, and storage. Beijing StarNet Ruijie Networks Technology Co., Ltd. EG Easy Gateway has an arbitrary file reading vulnerability. Attackers can use this vulnerability to obtain sensitive system information.

Ricoh (China) Investment Co., Ltd. provides office image processing equipment (such as MFPs, printers, etc.), production digital printers, etc., such as document output management services and IT solutions. Ricoh (China) Investment Co., Ltd. RICOH Aficio MP C305 has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.

233D is a network camera. Axis 233D Network Dome Camera has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.

Dell Color MFP S2825cdn is a printer device. Dell Color MFP S2825cdn has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.

Honeywell (China) Co., Ltd. is a part of Honeywell International, a diversified, high-tech advanced manufacturing company. Honeywell (China) Co., Ltd. Hybrid Alarm Receiver (Professional Edition) has a SQL injection vulnerability. Attackers can use this vulnerability to obtain sensitive information in the database.

NETGEAR GS748Tv5 is a Gigabit Ethernet switch. NNETGEAR GS748Tv5 has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.

iSCS is an all-in-one access control machine. Shenzhen Cyberspace Technology Co., Ltd. iSCS has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information in the database.

GS724Tv4 is a 24-port Gigabit intelligent management professional switch with 2 SFP ports. NETGEAR GS724Tv4 has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.

An issue in Dut Computer Control Engineering Co.'s PLC MAC1100 allows attackers to execute arbitrary code. Dut Computer Control Engineering Co. PLC MAC1100 Contains a command injection vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. MAC1100 PLC is an industrial control product PLC

An issue in Dut Computer Control Engineering Co.'s PLC MAC1100 allows attackers to gain access to the system and escalate privileges via a crafted packet. Dut Computer Control Engineering Co. PLC MAC1100 Exists in a vulnerability related to the lack of authentication.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. MAC1100 PLC is an industrial control product PLC. There is a security loophole in MAC1100 PLC. Attackers can use this loophole to access the system and upgrade privileges through an elaborate package

An information disclosure vulnerability exists within Dut Computer Control Engineering Co.'s PLC MAC1100. MAC1100 PLC is an industrial control product PLC. The control code in the PLC may be the company's core secret

An arbitrary memory access vulnerability in the EPA protocol of Dut Computer Control Engineering Co.'s PLC MAC1100 allows attackers to read the contents of any variable area. Dut Computer Control Engineering Co. PLC MAC1100 Exists in an out-of-bounds read vulnerability.Information may be obtained. MAC1100 PLC is an industrial control product PLC. There is a security loophole in the EPA protocol of MAC1100 PLC. Attackers can use this loophole to read the contents of arbitrary memory

An issue in Dut Computer Control Engineering Co.'s PLC MAC1100 allows attackers to cause persistent denial of service (DOS) via a crafted packet. Dut Computer Control Engineering Co. PLC MAC1100 Exists in a vulnerability related to the lack of authentication.Service operation interruption (DoS) It may be in a state. MAC1100 PLC is an industrial control product PLC

Nagios XI Switch Wizard before version 2.5.7 is vulnerable to remote code execution through improper neutralisation of special elements used in an OS Command (OS Command injection). (DoS) It may be in a state

Sharp Trading (China) Co., Ltd. is a foreign-funded enterprise that distributes and wholesales household appliances, LCD TVs, air conditioners, mobile phones, printers and other products. Sharp Trading (China) Co., Ltd. MX-M316N has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.

Lexmark (NYSE: LXK) is an American company that is a developer and manufacturer of laser printers and a provider of content management software. Its main service targets are commercial users. Lexmark MC2425adw has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.