VARIoT IoT vulnerabilities database

The api/ZRAndlink/set_ZRAndlink interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the iandlink_proc_enable parameter. Anlianbao WT-1 is a 4G router that integrates wired and wireless router access, and secure Internet access. An Lianbao WF-1 router has a command execution vulnerability, which can be exploited by attackers to gain server management rights

China Mobile An Lianbao WF-1 router v1.0.1 is affected by an OS command injection vulnerability in the web interface /api/ZRUsb/pop_usb_device component. (DoS) It may be in a state. Anlianbao WT-1 is a 4G router that integrates wired and wireless router access, and secure Internet access. An Lianbao WF-1 router has a command execution vulnerability, which can be exploited by attackers to gain server management rights

China Mobile An Lianbao WF-1 V1.0.1 router provides a web interface /api/ZRMesh/set_ZRMesh which receives parameters by POST request, and the parameter mesh_enable and mesh_device have a command injection vulnerability. An attacker can use the vulnerability to execute remote commands. (DoS) It may be in a state. Anlianbao WT-1 is a 4G router that integrates wired and wireless router access, and secure Internet access. An Lianbao WF-1 router has a command execution vulnerability, which can be exploited by attackers to gain server management rights

China Mobile An Lianbao WF-1 v1.0.1 router web interface through /api/ZRMacClone/mac_addr_clone receives parameters by POST request, and the parameter macType has a command injection vulnerability. An attacker can use the vulnerability to execute remote commands. (DoS) It may be in a state. Anlianbao WT-1 is a 4G router that integrates wired and wireless router access, and secure Internet access. An Lianbao WF-1 router has a command execution vulnerability, which can be exploited by attackers to gain server management rights

China Mobile An Lianbao WF-1 V1.0.1 router provides a web interface /api/ZRRuleFilter/set_firewall_level which receives parameters by POST request, and the parameter firewall_level has a command injection vulnerability. An attacker can use the vulnerability to execute remote commands. (DoS) It may be in a state. Anlianbao WT-1 is a 4G router that integrates wired and wireless router access, and secure Internet access. An Lianbao WF-1 router has a command execution vulnerability, which can be exploited by attackers to gain server management rights

DD-WRT is a Linux-based wireless routing software, released based on GPLV2. DD-WRT has a denial of service vulnerability, which can be exploited by an attacker to cause a denial of service.

Netgear AC1750 R6400v2 is a Wi-Fi router. Netgear AC1750 R6400v2 has a denial of service vulnerability. Attackers can use the loopholes to send carefully constructed data packets (pointing to a specific destination address) to cause the target router and its upper carrier's router to cause a denial of service.

Tenda AC23 is a hundred yuan router. Tenda AC23 has a denial of service vulnerability. Attackers can use the loopholes to send carefully constructed data packets (pointing to a specific destination address) to cause the target router and its upper carrier's router to cause a denial of service.

OpenWRT is a highly modular, highly automated embedded Linux system with powerful network components and scalability, and is often used in industrial control equipment, telephones, small robots, smart homes, routers, and VOIP devices. OpenWrt has a denial of service vulnerability that an attacker can exploit to cause a denial of service.

The File Firewall before 2.8.0 for ownCloud Server does not properly enforce file-type restrictions for public shares. The following products and versions are affected: Owncloud File Firewall prior to 2.8.0

A CWE-352: Cross-Site Request Forgery vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that could cause a user to perform an unintended action on the target device when using the HTTP web interface.

A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that could cause disclosure of user credentials when a malicious actor intercepts HTTP network traffic between a user and the device.

A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION7700/73xx, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that could cause disclosure of user credentials when a malicious actor intercepts Telnet network traffic between a user and the device.

Dell EMC PowerProtect Cyber Recovery, version 19.7.0.1, contains an Information Disclosure vulnerability. A locally authenticated high privileged Cyber Recovery user may potentially exploit this vulnerability leading to the takeover of the notification email account. This vulnerability stems from configuration errors in network systems or products during operation. Thereby taking over the notification email account

Tianxin Instrument Group Co., Ltd. is a professional service provider of domestic flow meters and gas application system solutions. The Tianxin SCADA system of Tianxin Instrument Group Co., Ltd. has a SQL injection vulnerability. Attackers can use vulnerabilities to obtain sensitive information in the database.

Zhejiang Yushi Technology Co., Ltd. (abbreviated as: Yushi) was founded in 2011 and is a global public safety and intelligent transportation solution provider. Zhejiang Yushi Technology Co., Ltd. media player has a weak password vulnerability. Attackers can use the vulnerability to enter the default password to log in to obtain sensitive information.

Tianyi broadband government-enterprise gateway A8-C is China Telecom's fiber optic modem. Tianyi Broadband's government-enterprise gateway A8-C has unauthorized loopholes. Attackers can use vulnerabilities to cause resets to override their authority.

Tianyi broadband government-enterprise gateway A8-C (8+8) is a broadband broadband for telecom enterprises. Tianyi broadband government-enterprise gateway A8-C (8+8) has logic flaws. Attackers can use the vulnerability to cause any user to modify the LOID and cause the entire gateway to disconnect.

The business scope of Xiamen Lionfish Network Technology Co., Ltd. includes: Internet of Things technical services; Internet of Things application services; Internet of Things equipment manufacturing; Internet of Things equipment sales, etc. The Lionfish community group buying system has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information in the database.

Privilege escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.8 allows an authenticated user to gain elevated privileges through the User Interface and execute commands on the appliance via incorrect improper neutralization of user input in the troubleshooting page. McAfee Web Gateway (MWG) Vulnerability in privilege managementInformation is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. McAfee Web Gateway is a high-performance secure Web gateway, using a unified device software architecture, with best-in-class threat protection. The vulnerability stems from the non-neutralization of user input in the troubleshooting page. Attackers can use this vulnerability to gain elevated privileges. There is no relevant information about this vulnerability at present. Please keep an eye on CNNVD or vendor announcements