VARIoT IoT vulnerabilities database
| VAR-202006-1571 | CVE-2020-3665 | plural Snapdragon Product Index Validation Vulnerability |
CVSS V2: 4.6 CVSS V3: 7.8 Severity: HIGH |
A possible buffer overflow would occur while processing command from firmware due to the group_id obtained from the firmware being out of range in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053, APQ8096AU, MDM9206, MDM9207C, MDM9607, MDM9615, MDM9640, MDM9650, MSM8909W, MSM8996, MSM8996AU, QCA6174A, QCA9377, QCA9379, SDM439, SDM636, SDM660, SDX20, SDX24, SM8150. plural Snapdragon The product contains a vulnerability in array index validation.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state
| VAR-202006-1565 | CVE-2020-3642 | plural Snapdragon Product free memory usage vulnerability |
CVSS V2: 4.6 CVSS V3: 7.8 Severity: HIGH |
Use after free issue in camera applications when used randomly over multiple operations due to pointer not set to NULL after free/destroy of the object in Snapdragon Consumer IOT, Snapdragon Mobile in Kamorta, QCS605, Rennell, Saipan, SDM670, SDM710, SDM845, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Snapdragon The product contains a vulnerability related to the use of freed memory.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state
| VAR-202009-0044 | CVE-2020-11129 | Qualcomm Camera Driver Resource Management Error Vulnerability |
CVSS V2: 7.2 CVSS V3: 7.8 Severity: HIGH |
u'During the error occurrence in capture request, the buffer is freed and later accessed causing the camera APP to fail due to memory use-after-free' in Snapdragon Consumer IOT, Snapdragon Mobile in Bitra, Kamorta, QCS605, Saipan, SDM710, SM8250, SXR2130
| VAR-202005-1107 | No CVE | Asia Control Technology KingView (KingView) has an information disclosure vulnerability |
CVSS V2: 5.0 CVSS V3: - Severity: MEDIUM |
KingView (KingView) is the first industrial configuration software product launched by Asia Control in China.
There is an information disclosure vulnerability in KingView, which can be exploited by attackers to obtain sensitive information.
| VAR-202005-1114 | No CVE | Allen-Bradley control system ACTIVEX control has buffer overflow vulnerability |
CVSS V2: 10.0 CVSS V3: - Severity: HIGH |
Rockwell Automation (China) Co., Ltd. is a company engaged in industrial automation and information technology.
A buffer overflow vulnerability exists in the ActiveX control of the Allen-Bradley control system, which an attacker can use to affect the confidentiality of the system.
| VAR-202005-1103 | No CVE | Kingview has a DLL hijacking vulnerability |
CVSS V2: 7.2 CVSS V3: - Severity: HIGH |
KingView (KingView) is the first industrial configuration software product launched by Beijing Asia Control Technology Co., Ltd. in China.
There is a DLL hijacking vulnerability in Kingview. An attacker can use the vulnerability to load a DLL file for command execution.
| VAR-202005-1034 | CVE-2020-12493 | SWARCO TRAFFIC SYSTEMS Made SWARCO CPU LS4000 Improper access control vulnerabilities |
CVSS V2: 10.0 CVSS V3: 10.0 Severity: CRITICAL |
An open port used for debugging in SWARCOs CPU LS4000 Series with versions starting with G4... grants root access to the device without access control via network. A malicious user could use this vulnerability to get access to the device and disturb operations with connected devices. SWARCO CPU LS4000 Is the chip software built into the traffic light controller
| VAR-202005-1022 | CVE-2020-8482 | ABB Device Library Wizard Vulnerability in insecure storage of critical information in |
CVSS V2: 2.1 CVSS V3: 5.5 Severity: MEDIUM |
Insecure storage of sensitive information in ABB Device Library Wizard versions 6.0.X, 6.0.3.1 and 6.0.3.2 allows unauthenticated low privilege user to read file that contains confidential data. An attacker could exploit this vulnerability to obtain files containing confidential data
| VAR-202005-1074 | No CVE | KUNBUS-GW Modbus TCP has a denial of service vulnerability (CNVD-2020-32300) |
CVSS V2: 4.9 CVSS V3: - Severity: MEDIUM |
KUNBUS-GW Modbus TCP is a programmable logic controller (PLC) that provides an integrated ControlNet communication port and provides two integrated Ethernet interfaces.
KUNBUS-GW Modbus TCP has a denial of service vulnerability. Attackers can use vulnerabilities to bring equipment down.
| VAR-202005-1087 | No CVE | KUNBUS-GW Modbus TCP has a denial of service vulnerability (CNVD-2020-32302) |
CVSS V2: 4.9 CVSS V3: - Severity: MEDIUM |
KUNBUS-GW Modbus TCP is a programmable logic controller (PLC) that provides an integrated ControlNet communication port and provides two integrated Ethernet interfaces.
KUNBUS-GW Modbus TCP has a denial of service vulnerability. Attackers can use vulnerabilities to bring equipment down.
| VAR-202005-1088 | No CVE | KUNBUS-GW Modbus TCP has a denial of service vulnerability |
CVSS V2: 4.9 CVSS V3: - Severity: MEDIUM |
KUNBUS-GW Modbus TCP is a programmable logic controller (PLC) that provides an integrated ControlNet communication port and provides two integrated Ethernet interfaces.
KUNBUS-GW Modbus TCP has a denial of service vulnerability. Attackers can use vulnerabilities to bring equipment down.
| VAR-202005-0487 | CVE-2020-13245 | plural NETGEAR Certificate validation vulnerabilities in devices |
CVSS V2: 4.3 CVSS V3: 5.9 Severity: MEDIUM |
Certain NETGEAR devices are affected by Missing SSL Certificate Validation. This affects R7000 1.0.9.6_1.2.19 through 1.0.11.100_10.2.10, and possibly R6120, R7800, R6220, R8000, R6350, R9000, R6400, RAX120, R6400v2, RBR20, R6800, XR300, R6850, XR500, and R7000P. NETGEAR R7000 is a wireless router of NETGEAR. Attackers can use this vulnerability to send malicious firmware updates to routers by implementing man-in-the-middle attacks
| VAR-202005-0309 | CVE-2020-11949 | plural VIVOTEK Network Camera Vulnerability regarding information leakage in |
CVSS V2: 4.0 CVSS V3: 6.5 Severity: MEDIUM |
testserver.cgi of the web service on VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x (and before XXXXX-VVTK-0XXXX_Beta2) allows an authenticated user to obtain arbitrary files from a camera's local filesystem. For example, this affects IT9388-HT devices. plural VIVOTEK Network Camera There is an information leakage vulnerability in.Information may be obtained
| VAR-202005-0317 | CVE-2020-11950 | plural VIVOTEK Network Camera In OS Command injection vulnerabilities |
CVSS V2: 9.0 CVSS V3: 8.8 Severity: HIGH |
VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x (and before XXXXX-VVTK-0XXXX_Beta2) allows an authenticated user to upload and execute a script (with resultant execution of OS commands). For example, this affects IT9388-HT devices. plural VIVOTEK Network Camera To OS A command injection vulnerability exists.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state
| VAR-202005-1031 | CVE-2020-8330 | Lenovo Printer LJ4010DN Input verification vulnerability in |
CVSS V2: 7.8 CVSS V3: 7.5 Severity: HIGH |
A denial of service vulnerability was reported in the firmware prior to version 1.01 used in Lenovo Printer LJ4010DN that could be triggered by a remote user sending a crafted packet to the device, preventing subsequent print jobs until the printer is rebooted. Lenovo Printer LJ4010DN There is an input verification vulnerability in.Service operation interruption (DoS) It may be put into a state. Lenovo Printer LJ4010DN is a multi-function printer from Lenovo of China.
There is a security hole in the Lenovo Printer LJ4010DN using firmware prior to version 1.01
| VAR-202005-1030 | CVE-2020-8329 | Lenovo Printer LJ4010DN Input verification vulnerability in |
CVSS V2: 7.8 CVSS V3: 7.5 Severity: HIGH |
A denial of service vulnerability was reported in the firmware prior to version 1.01 used in Lenovo Printer LJ4010DN that could be triggered by a remote user sending a crafted packet to the device, causing an error to be displayed and preventing printer from functioning until the printer is rebooted. Lenovo Printer LJ4010DN There is an input verification vulnerability in.Service operation interruption (DoS) It may be put into a state. Lenovo Printer LJ4010DN is a multi-function printer from Lenovo of China.
There is a security hole in the Lenovo Printer LJ4010DN using firmware prior to version 1.01
| VAR-202005-0625 | CVE-2020-1809 | Huawei Mate 10 information disclosure vulnerability |
CVSS V2: 2.1 CVSS V3: 4.6 Severity: MEDIUM |
HUAWEI Mate 10 smartphones with versions earlier than 10.0.0.143(C00E143R2P4) have an information disclosure vulnerability. The attacker could wake up voice assistant then do a series of crafted voice operation, successful exploit could allow the attacker read certain files without unlock the phone leading to information disclosure. Huawei Mate 10 is a smart phone of the Chinese company Huawei
| VAR-202005-0666 | CVE-2020-1870 | CloudEngine 12800 and 6800 Vulnerability regarding lack of resource release after valid lifetime in |
CVSS V2: 5.0 CVSS V3: 7.5 Severity: HIGH |
There is a denial of service vulnerability in some Huawei products. Due to improper memory management, memory leakage may occur in some special cases. Attackers can perform a series of operations to exploit this vulnerability. Successful exploit may cause a denial of service. Affected product versions include: CloudEngine 12800 versions V200R019C00SPC800; CloudEngine 5800 versions V200R019C00SPC800; CloudEngine 6800 versions V200R005C20SPC800, V200R019C00SPC800; CloudEngine 7800 versions V200R019C00SPC800; NE40E versions V800R011C00SPC200, V800R011C00SPC300, V800R011C10SPC100; NE40E-F versions V800R011C00SPC200, V800R011C10SPC100; NE40E-M versions V800R011C00SPC200, V800R011C10SPC100. CloudEngine 12800 and 6800 Is vulnerable to a lack of resource release after a valid lifetime.Service operation interruption (DoS) It may be put into a state. Both Huawei CloudEngine 6800 and Huawei CloudEngine 12800 are products of the Chinese company Huawei. CloudEngine 6800 is a 6800 series 10 Gigabit Ethernet switch facing the data center. Huawei CloudEngine 12800 is a 12800 series data center switch.
There is a security vulnerability in Huawei CloudEngine 12800 and CloudEngine 6800
| VAR-202005-0668 | CVE-2020-1831 | HUAWEI Mate 20 Unauthorized authentication vulnerabilities in smartphones |
CVSS V2: 1.9 CVSS V3: 2.4 Severity: LOW |
HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.195(SP31C00E74R3P8) have an improper authorization vulnerability. The digital balance function does not sufficiently restrict the using time of certain user, successful exploit could allow the user break the limit of digital balance function after a series of operations with a PC. Huawei Mate 20 is a smart phone of the Chinese company Huawei. The vulnerability stems from the fact that the healthy use of mobile phone functions does not adequately limit the duration of user use. Attackers can use this vulnerability to break through the restrictions on the healthy use of mobile phone functions
| VAR-202005-0669 | CVE-2020-1832 | E6878-370 Out-of-bounds write vulnerability in |
CVSS V2: 5.8 CVSS V3: 8.8 Severity: HIGH |
E6878-370 products with versions of 10.0.3.1(H557SP27C233) and 10.0.3.1(H563SP1C00) have a stack buffer overflow vulnerability. The program copies an input buffer to an output buffer without verification. An attacker in the adjacent network could send a crafted message, successful exploit could lead to stack buffer overflow which may cause malicious code execution. E6878-370 Is vulnerable to out-of-bounds writes.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state. Huawei E6878-370 is a portable 5G router from China's Huawei company