VARIoT IoT vulnerabilities database

There is an arbitrary password modification vulnerability in a D-LINK DSL-2888A router product. An attacker can use this vulnerability to modify the password of the admin user without authorization. DSL-2888A The firmware contains a vulnerability related to unauthorized authentication.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. D-link DSL-2888A is a unified service router of China D-link Corporation. D-LINK DSL-2888A has a security loophole

The business of Inspur Group Co., Ltd. covers cloud data centers, cloud service big data, smart cities, smart enterprises and other business sectors, and has formed an overall solution service capability covering four levels of infrastructure, platform software, data information and application software. The Management System of Inspur Group Co., Ltd. has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.

Panabit's four to seven-layer smart gateways are specially customized for small and medium-sized users, which can solve a series of practical needs from network access, multi-line aggregation, application optimization, load balancing, behavior management, user authentication, WIFI with machine guarantee, log audit, etc. . The Panabit Smart Application Gateway has a command execution vulnerability, which can be exploited by an attacker to gain control of the server.

Sharp is a Japanese electrical and electronic company. Sharp MX-3610N has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.

EAP1750H is a 2.4G and 5G dual-band wireless router from EnGenius. EnGenius EAP1750H has a weak password vulnerability. Attackers can use vulnerabilities to obtain sensitive information.

ENS202EXT is an outdoor wireless bridge made by EnGenius. EnGenius ENS202EXT has a weak password vulnerability. Attackers can use vulnerabilities to obtain sensitive information.

Cohu provides the most extensive equipment and service portfolio for back-end semiconductor manufacturing, including one-stop testing and processing equipment, thermal subsystems, test contacts, visual inspection and MEMS test solutions. Cohu IP Camera Control has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.

The business scope of Dell (China) Co., Ltd. includes: manufacturing, assembling, researching and developing computer products, mobile phone products, network communication equipment (routers, switches, network data center products), etc. The Dell B3460DN monochrome laser printer has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows remote attackers to write arbitrary files via unspecified vectors. Synology DiskStation Manager (DSM) Contains a path traversal vulnerability.Information may be tampered with. Synology DiskStation Manager (DSM) is an operating system for network storage servers (NAS) developed by Synology, Taiwan. The operating system can manage data, documents, photos, music and other information

Exposure of sensitive information to an unauthorized actor vulnerability in webapi component in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows remote attackers to obtain sensitive information via unspecified vectors. Synology DiskStation Manager (DSM) Contains an information disclosure vulnerability.Information may be obtained. Synology DiskStation Manager (DSM) is an operating system for network storage servers (NAS) developed by Synology, Taiwan. The operating system can manage data, documents, photos, music and other information

Improper neutralization of special elements in output used by a downstream component ('Injection') vulnerability in file sharing management component in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows remote attackers to read arbitrary files via unspecified vectors. Synology DiskStation Manager (DSM) Is vulnerable to injection.Information may be obtained. Synology DiskStation Manager (DSM) is an operating system for network storage servers (NAS) developed by Synology, Taiwan. The operating system can manage data, documents, photos, music and other information

Use after free vulnerability in file transfer protocol component in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows remote attackers to execute arbitrary code via unspecified vectors. Synology DiskStation Manager (DSM) Is vulnerable to the use of freed memory.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. Synology DiskStation Manager (DSM) is an operating system for network storage servers (NAS) developed by Synology, Taiwan. The operating system can manage data, documents, photos, music and other information

EDIMAX N300 Wi-Fi is a 2.4G single-band wireless router of Xunzhou Technology Co., Ltd. The EDIMAX N300 Wi-Fi router has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.

ADSL is a broadband dial-up router equipment of ZyXEL Company. ZyXEL ADSL Router has a weak password vulnerability. Attackers can use this vulnerability to log in to the background of the system and perform unauthorized operations.

EDIMAX Wireless is a 2.4G and 5G dual-band wireless router of Xunzhou Technology Co., Ltd. The EDIMAX Wireless wireless router has a weak password vulnerability, which can be exploited by attackers to obtain sensitive information.

ZTE Corporation is the world's leading provider of integrated communications solutions. The main products include: 2G/3G/4G/5G wireless base station and core network, IMS, fixed network access and bearer, optical network, chip, high-end router, smart switch, government and enterprise network, big data, cloud computing, data center, etc. . ZXHN F450A has a logic flaw vulnerability, which can be exploited by attackers to obtain sensitive information.

Matsushita Electric (China) Co., Ltd. is mainly responsible for the sales and after-sales service activities of home appliances, systems, environment, components and other commodities. Matsushita Electric (China) Co., Ltd. Network Camera WV-SW174W has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.

Matsushita Electric (China) Co., Ltd. is mainly responsible for the sales and after-sales service activities of home appliances, systems, environment, components and other commodities. Matsushita Electric (China) Co., Ltd. Network Camera WV-SW598 has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.

Axis is an IT company that specializes in providing network video solutions. AXIS V5914 PTZ Network Camera has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.

Axis is an IT company that specializes in providing network video solutions. AXIS 213 PTZ Network Camera has an unauthorized access vulnerability, which can be exploited by attackers to obtain sensitive information.