Embedded System Vulnerabilities
A focused list of vulnerabilities relevant to embedded and IoT devices.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2019-20348 | OKER G232V1 v1.03.02.20161129 devices provide a root terminal on a UART serial interface without proper access control.… | Medium (6.8) | 2020-01-06 | Environment Specific |
| CVE-2019-18842 | A cross-site scripting (XSS) vulnerability in the configuration web interface of the Jinan USR IOT USR-WIFI232-S/T/G2/H… | Medium (6.1) | 2020-01-06 | Environment Specific |
| CVE-2019-18625 | An issue was discovered in Suricata 5.0.0. It was possible to bypass/evade any tcp based signature by faking a closed T… | High (7.5) | 2020-01-06 | Environment Specific |
| CVE-2019-16271 | DTEN D5 and D7 before 1.3.2 devices allows remote attackers to read saved whiteboard image PDF documents via storage/em… | Medium (5.3) | 2020-01-06 | Environment Specific |
| CVE-2020-5204 | In uftpd before 2.11, there is a buffer overflow vulnerability in handle_PORT in ftpcmd.c that is caused by a buffer th… | Medium (6.5) | 2020-01-06 | Environment Specific |