Embedded System Vulnerabilities
A focused list of vulnerabilities relevant to embedded and IoT devices.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2019-5136 | An exploitable privilege escalation vulnerability exists in the iw_console functionality of the Moxa AWK-3131A firmware… | High (8.8) | 2020-02-25 | Environment Specific |
| CVE-2020-9385 | A NULL Pointer Dereference exists in libzint in Zint 2.7.1 because multiple + characters are mishandled in add_on in up… | High (7.5) | 2020-02-25 | Environment Specific |
| CVE-2020-9374 | On TP-Link TL-WR849N 0.9.1 4.16 devices, a remote command execution vulnerability in the diagnostics area can be exploi… | Critical (9.8) | 2020-02-24 | Environment Specific |
| CVE-2019-12513 | In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, by sending a DHCP discover request containing a malicious hostname fie… | Medium (6.1) | 2020-02-24 | Environment Specific |
| CVE-2019-12512 | In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, an attacker may execute stored XSS attacks against this device by supp… | Medium (6.1) | 2020-02-24 | Environment Specific |