Embedded System Vulnerabilities
A focused list of vulnerabilities relevant to embedded and IoT devices.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2019-16272 | On DTEN D5 and D7 before 1.3.4 devices, factory settings allows for firmware reflash and Android Debug Bridge (adb) ena… | Critical (9.8) | 2020-01-06 | Environment Specific |
| CVE-2019-9472 | In DCRYPTO_equals of compare.c, there is a possible timing attack due to improperly used crypto. This could lead to loc… | Medium (5.5) | 2020-01-06 | Environment Specific |
| CVE-2019-9471 | In set_outbound_iatu of abc-pcie.c, there is a possible out of bounds write due to a missing bounds check. This could l… | Medium (6.7) | 2020-01-06 | Environment Specific |
| CVE-2019-9470 | In dma_sblk_start of abc-pcie.c, there is a possible out of bounds write due to a missing bounds check. This could lead… | Medium (6.7) | 2020-01-06 | Environment Specific |
| CVE-2019-9469 | In km_compute_shared_hmac of km4.c, there is a possible out of bounds write due to improper input validation. This coul… | High (7.8) | 2020-01-06 | Environment Specific |