Embedded System Vulnerabilities
A focused list of vulnerabilities relevant to embedded and IoT devices.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2019-20215 | D-Link DIR-859 1.05 and 1.06B01 Beta01 devices allow remote attackers to execute arbitrary OS commands via a urn: to th… | Critical (9.8) | 2020-01-29 | Environment Specific |
| CVE-2020-8424 | Cups Easy (Purchase & Inventory) 1.0 is vulnerable to CSRF that leads to admin account takeover via passwordmychange.ph… | High (8.8) | 2020-01-28 | Environment Specific |
| CVE-2013-1603 | An Authentication vulnerability exists in D-LINK WCS-1100 1.02, TESCO DCS-2121 1.05_TESCO, TESCO DCS-2102 1.05_TESCO, D… | Medium (5.3) | 2020-01-28 | Environment Specific |
| CVE-2013-1602 | An Information Disclosure vulnerability exists due to insufficient validation of authentication cookies for the RTSP se… | High (7.5) | 2020-01-28 | Environment Specific |
| CVE-2013-3093 | ASUS RT-N56U devices allow CSRF. | High (8.8) | 2020-01-28 | Environment Specific |