Embedded System Vulnerabilities
A focused list of vulnerabilities relevant to embedded and IoT devices.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2020-8473 | Insufficient folder permissions used by system functions in ABB System 800xA Base (version 6.1 and earlier) allow low p… | High (7.3) | 2020-04-29 | Environment Specific |
| CVE-2020-8472 | Insufficient folder permissions used by system functions in ABB System 800xA products OPCServer for AC800M (versions 6.… | Medium (5.5) | 2020-04-29 | Environment Specific |
| CVE-2019-20791 | OpenThread before 2019-12-13 has a stack-based buffer overflow in MeshCoP::Commissioner::GeneratePskc. | Critical (9.8) | 2020-04-28 | Environment Specific |
| CVE-2018-21226 | Certain NETGEAR devices are affected by authentication bypass. This affects JNR1010v2 before 1.1.0.48, JWNR2010v5 befor… | High (8.8) | 2020-04-28 | Environment Specific |
| CVE-2018-21225 | Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7000 before 1.0.1.60,… | Medium (6.8) | 2020-04-28 | Environment Specific |