VARIoT IoT vulnerabilities database

Affected products: vendor, model and version
CWE format is 'CWE-number'. Threat type can be: remote or local
Look up free text in title and description

VAR-202004-0053 CVE-2020-10631 WebAccess/NMS Past Traversal Vulnerability in CVSS V2: 7.5
CVSS V3: 9.8
Severity: CRITICAL
An attacker could use a specially crafted URL to delete or read files outside the WebAccess/NMS's (versions prior to 3.0.2) control. WebAccess/NMS Exists in a past traversal vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state. This vulnerability allows remote attackers to disclose sensitive information and delete arbitrary files on affected installations of Advantech WebAccess/NMS. Authentication is not required to exploit this vulnerability.The specific flaw exists within the processing of calls to the download.jsp endpoint. When parsing the filename parameter, the process does not properly validate a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to disclose files in the context of SYSTEM or to create a denial-of-service condition on the system. Advantech WebAccess/NMS is a set of Web browser-based Network Management System (NMS) software package developed by China Taiwan Advantech Corporation. There is a path traversal vulnerability in versions prior to Advantech WebAccess/NMS 3.0.2
VAR-202004-1911 CVE-2020-7801 Synergy Systems & Solutions HUSKY RTU 6049-E70 Information Disclosure Vulnerability CVSS V2: 5.0
CVSS V3: 5.3
Severity: MEDIUM
The Synergy Systems & Solutions (SSS) HUSKY RTU 6049-E70, with firmware Versions 5.0 and prior, has an Exposure of Sensitive Information to an Unauthorized Actor (CWE-200) vulnerability. The affected product is vulnerable to information exposure over the SNMP protocol. This is a different issue than CVE-2019-16879, CVE-2019-20045, CVE-2019-20046, CVE-2020-7800, and CVE-2020-7802
VAR-202004-0676 CVE-2019-14110 plural Snapdragon Classic buffer overflow vulnerability in the product CVSS V2: 10.0
CVSS V3: 9.8
Severity: CRITICAL
Buffer overflow can occur in function wlan firmware while copying association frame content if frame length is more than the maximum buffer size in case of SAP mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130. plural Snapdragon The product contains a classic buffer overflow vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state
VAR-202004-0665 CVE-2019-14114 plural Snapdragon Integer overflow vulnerability in product CVSS V2: 10.0
CVSS V3: 9.8
Severity: CRITICAL
Buffer overflow in WLAN firmware while parsing GTK IE containing GTK key having length more than the buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130. plural Snapdragon The product is vulnerable to integer overflow.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state
VAR-202004-0664 CVE-2019-14113 plural Snapdragon Integer overflow vulnerability in product CVSS V2: 10.0
CVSS V3: 9.8
Severity: CRITICAL
Buffer overflow can occur in In WLAN firmware while unwraping data using CCMP cipher suite during parsing of EAPOL handshake frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130. plural Snapdragon The product is vulnerable to integer overflow.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state
VAR-202004-1818 CVE-2020-9473 S. Siedle & Soehne  of  SG 150-0  Vulnerability related to lack of authentication for critical functions in firmware CVSS V2: 8.5
CVSS V3: 6.6
Severity: MEDIUM
The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 has a passwordless ftp ssh user. By using an exploit chain, an attacker with access to the network can get root access on the gateway. Siedle & Soehne of SG 150-0 Firmware has a lack of authentication vulnerability for critical functionality.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state
VAR-202004-2222 No CVE Delta Electronics Enterprise Management (Shanghai) Co., Ltd. has an information disclosure vulnerability in IEXplorer CVSS V2: 2.1
CVSS V3: -
Severity: LOW
IEXplorer is an industrial Ethernet tool software that provides automatic search for Delta industrial Ethernet products, provides real-time monitoring of device connection status, quick IP address setting and software upgrade functions, applicable products include (DVS series, DVW series, IFD9506 , IFD9507, RTU-EN01, DVPEN01-SL, DVP12SE, DVP-FEN01, DVPSCM12-SL, DVPSCM52-SL, ASDA-M, CMC-MOD010). Delta Electronics Enterprise Management (Shanghai) Co., Ltd. IEXplorer has an information disclosure vulnerability. An attacker can use the vulnerability to obtain the user's password.
VAR-202004-2260 No CVE Shenzhen Dadian Technology Co., Ltd. has a SQL injection vulnerability CVSS V2: 7.8
CVSS V3: -
Severity: HIGH
Shenzhen Dadian Technology Co., Ltd. is a company specializing in the research and development of IoT big data technology and its systems, located in Shenzhen. There is a SQL injection vulnerability in the website construction system of Shenzhen Dadian Technology Co., Ltd., which can be used by attackers to obtain sensitive database information.
VAR-202004-2221 No CVE Delta Electronics Enterprise Management (Shanghai) Co., Ltd. IEXplorer has unauthorized access vulnerability CVSS V2: 2.1
CVSS V3: -
Severity: LOW
IEXplorer is an industrial Ethernet tool software that provides automatic search for Delta industrial Ethernet products, provides real-time monitoring of device connection status, quick IP address setting and software upgrade functions, applicable products include (DVS series, DVW series, IFD9506 , IFD9507, RTU-EN01, DVPEN01-SL, DVP12SE, DVP-FEN01, DVPSCM12-SL, DVPSCM52-SL, ASDA-M, CMC-MOD010). Delta Electronics Enterprise Management (Shanghai) Co., Ltd. has an unauthorized access vulnerability in IEXplorer. Attackers can use the loopholes to access all functions of the software in an unauthorized state, and perform illegal operations.
VAR-202004-2249 No CVE Unauthorized access vulnerability exists in the beenet interconnected enterprise router CVSS V2: 6.4
CVSS V3: -
Severity: MEDIUM
Established in October 2016, Chengdu Zhifengwang Technology Co., Ltd. is an emerging high-tech company integrating R&D, production and sales. An unauthorized access vulnerability exists in the beenet interconnected enterprise router, which can be exploited by attackers to obtain sensitive website information.
VAR-202004-1914 CVE-2020-8004 STMicroelectronics STM32F1 Information Disclosure Vulnerability CVSS V2: 5.0
CVSS V3: 7.5
Severity: HIGH
STMicroelectronics STM32F1 devices have Incorrect Access Control. STMicroelectronics STM32F1 The device contains a vulnerability related to information leakage.Information may be obtained. STMicroelectronics STM32F1 is a 32-bit microcontroller based on ARM Cortex M3 from STMicroelectronics (STMicroelectronics). Attackers can use this vulnerability to obtain memory content
VAR-202004-0392 CVE-2020-10265 Universal Robots Robot Controllers Vulnerability regarding lack of authentication for critical features in CVSS V2: 9.0
CVSS V3: 9.4
Severity: CRITICAL
Universal Robots Robot Controllers Version CB2 SW Version 1.4 upwards, CB3 SW Version 3.0 and upwards, e-series SW Version 5.0 and upwards expose a service called DashBoard server at port 29999 that allows for control over core robot functions like starting/stopping programs, shutdown, reset safety and more. The DashBoard server is not protected by any kind of authentication or authorization. Universal Robots Robot Controllers There is a vulnerability in the lack of authentication for critical features.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state
VAR-202004-0391 CVE-2020-10264 Universal Robots Robot Controllers Vulnerability regarding information leakage in CVSS V2: 5.8
CVSS V3: 8.8
Severity: HIGH
CB3 SW Version 3.3 and upwards, e-series SW Version 5.0 and upwards allow authenticated access to the RTDE (Real-Time Data Exchange) interface on port 30004 which allows setting registers, the speed slider fraction as well as digital and analog Outputs. Additionally unautheticated reading of robot data is also possible. Universal Robots Robot Controllers There is an information leakage vulnerability in.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state
VAR-202004-2250 No CVE D-link DIR-823G router firmware in the web server has a buffer overflow vulnerability CVSS V2: 10.0
CVSS V3: -
Severity: HIGH
D-Link DIR-823G is a wireless router. The web server in the firmware of the D-link DIR-823G router has a buffer overflow vulnerability. Attackers can use this vulnerability to cause buffer overflow attacks.
VAR-202004-2251 No CVE D-link DIR-823G router firmware web server has remote command execution vulnerability CVSS V2: 10.0
CVSS V3: -
Severity: HIGH
D-Link DIR-823G is a wireless router. There is a remote command execution vulnerability in the web server of the D-link DIR-823G router firmware. The attacker uses the vulnerability to execute arbitrary operating system commands by sending a specially constructed POST request.
VAR-202004-2252 No CVE D-link DIR-823G router has remote command execution vulnerability CVSS V2: 10.0
CVSS V3: -
Severity: HIGH
D-Link DIR-823G is a wireless router. D-link DIR-823G router has a remote command execution vulnerability. Attackers can use this vulnerability to execute arbitrary system commands.
VAR-202004-2226 No CVE FATEK PM Designer has a memory corruption vulnerability (CNVD-2020-18784) CVSS V2: 4.9
CVSS V3: -
Severity: MEDIUM
PM Designer is a programmable logic controller. FATEK PM Designer has a memory corruption vulnerability in handling plf files. Attackers can crash programs by constructing malformed files.
VAR-202004-2217 No CVE FATEK PM Designer has a memory corruption vulnerability CVSS V2: 4.9
CVSS V3: -
Severity: MEDIUM
PM Designer is a programmable logic controller. FATEK PM Designer has a memory corruption vulnerability in handling MID audio. Attackers can crash programs by constructing malformed files.
VAR-202004-1907 CVE-2020-5347 Dell EMC Isilon OneFS Resource exhaustion vulnerability in CVSS V2: 5.0
CVSS V3: 7.5
Severity: HIGH
Dell EMC Isilon OneFS versions 8.2.2 and earlier contain a denial of service vulnerability. SmartConnect had an error condition that may be triggered to loop, using CPU and potentially preventing other SmartConnect DNS responses. Dell EMC Isilon OneFS Exists in a resource exhaustion vulnerability.Service operation interruption (DoS) It may be put into a state. Dell EMC Isilon OneFS is a scale-out storage system for unstructured data from Dell
VAR-202004-0297 CVE-2020-11499 Firmware Analysis and Comparison Tool Cross-site scripting vulnerability in CVSS V2: 4.3
CVSS V3: 6.1
Severity: MEDIUM
Firmware Analysis and Comparison Tool (FACT) 3 has Stored XSS when updating analysis details via a localhost web request, as demonstrated by mishandling of the tags and version fields in helperFunctions/mongo_task_conversion.py. The vulnerability stems from the lack of correct validation of client data in WEB applications. An attacker could exploit this vulnerability to execute client code