Embedded System Vulnerabilities
A focused list of vulnerabilities relevant to embedded and IoT devices.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2019-9508 | The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to stored XSS. A remote attacker authen… | Medium (6.3) | 2020-03-30 | Environment Specific |
| CVE-2019-9507 | The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to command injection because the applic… | High (8.3) | 2020-03-30 | Environment Specific |
| CVE-2019-19605 | X-Plane before 11.41 allows Arbitrary Memory Write via crafted network packets, which could cause a denial of service o… | Critical (9.8) | 2020-03-30 | Environment Specific |
| CVE-2020-5726 | The Grandstream UCM6200 series before 1.0.20.22 is vulnerable to an SQL injection via the CTI server on port 8888. A re… | High (7.5) | 2020-03-30 | Environment Specific |
| CVE-2020-5725 | The Grandstream UCM6200 series before 1.0.20.22 is vulnerable to an SQL injection via the HTTP server's websockify endp… | Medium (5.9) | 2020-03-30 | Environment Specific |