Sign-up

VARIoT news about IoT security

Rockwell Automation PowerMonitor 1000 Remote | CISA

Related entries in the VARIoT vulnerabilities database: VAR-202412-2454

Trust: 4.25

Fetched: Dec. 18, 2024, 9:47 a.m., Published: -
 Vulnerabilities: buffer overflow, code execution
Affected productsExternal IDs
vendor: rockwell automation model: powermonitor 1000
vendor: rockwell model: powermonitor 1000
db: NVD ids: CVE-2024-12373, CVE-2024-12372, CVE-2024-12371

Update Canonical Ubuntu Desktop: USN-7108-2: AsyncSSH vulnerabilities

Trust: 4.25

Fetched: Dec. 18, 2024, 9:47 a.m., Published: Feb. 18, 7108, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: canonical model: ubuntu
db: NVD ids: CVE-2023-46445, CVE-2023-46446

Hitachi Energy TropOS Devices Series 1400/2400/6400 | CISA

Related entries in the VARIoT vulnerabilities database: VAR-201401-0184

Trust: 4.75

Fetched: Dec. 18, 2024, 9:46 a.m., Published: Dec. 18, 2024, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2013-5211

Update Canonical Ubuntu Desktop: USN-7151-1: oFono vulnerabilities

Trust: 5.25

Fetched: Dec. 18, 2024, 9:45 a.m., Published: -
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: canonical model: ubuntu
db: NVD ids: CVE-2023-4235, CVE-2023-4232

2024-12 Reference Advisory: Session Smart Router: Mirai malware found on systems when the default password remains unchanged

Trust: 4.5

Fetched: Dec. 18, 2024, 9:40 a.m., Published: -
 Vulnerabilities: default password
Affected productsExternal IDs

Ways Asset Management Can Help Reduce Cyber Risk | Industrial Defender OT/ICS Cybersecurity Blog

Trust: 3.0

Fetched: Dec. 18, 2024, 9:39 a.m., Published: Dec. 16, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: trend model: security

Default Credentials - BD Diagnostic Solutions Products | BD

Trust: 3.0

Fetched: Dec. 18, 2024, 9:37 a.m., Published: Dec. 19, 2024, midnight
 Vulnerabilities: default credentials
Affected productsExternal IDs
db: NVD ids: CVE-2024-10476

Access Denied

Trust: 3.25

Fetched: Dec. 18, 2024, 9:36 a.m., Published: May 19, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: samsung model: samsung

Cleo File Transfer Vulnerability: Patch Pitfalls and Darktrace’s Detection of Post-Exploitation Activities | Darktrace Blog

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 3.75

Fetched: Dec. 18, 2024, 9:35 a.m., Published: Dec. 16, 2024, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228

Nest Security Bulletin-December 2024 - Help

Related entries in the VARIoT vulnerabilities database: VAR-202203-1690

Trust: 5.5

Fetched: Dec. 18, 2024, 9:34 a.m., Published: Dec. 18, 2024, midnight
 Vulnerabilities: denial of service, information disclosure, code execution
Affected productsExternal IDs
vendor: google model: wifi router
vendor: google model: home
vendor: google model: wifi
db: NVD ids: CVE-2024-26923, CVE-2018-25032, CVE-2023-45853

Security Threats Highlighted in Latest IoT Device Vulnerabilities - Be3

Trust: 3.75

Fetched: Dec. 18, 2024, 9:34 a.m., Published: June 22, 2024, 1:37 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs

Towards a Safer Internet of Things-A Survey of IoT Vulnerability Data Sources - PMC

Related entries in the VARIoT vulnerabilities database: VAR-201202-0163, VAR-201202-0162, VAR-201202-0164

Trust: 4.5

Fetched: Dec. 18, 2024, 9:31 a.m., Published: Oct. 22, 2020, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: essential model: phone
vendor: google model: home
vendor: google model: android
vendor: paloaltonetworks model: pan-os
vendor: trend model: security
vendor: codesys model: control
vendor: codesys model: codesys
vendor: cisco model: router
vendor: cisco model: routers
vendor: trend micro model: security
db: NVD ids: CVE-2010-1677, CVE-2011-4876, CVE-2011-4875, CVE-2011-4877

Schneider Electric Modicon | CISA

Trust: 5.75

Fetched: Dec. 18, 2024, 9:26 a.m., Published: Dec. 18, 2024, midnight
 Vulnerabilities: input validation vulnerability
Affected productsExternal IDs
vendor: schneider electric model: modbus
vendor: schneider electric model: modicon m241
vendor: schneider model: modbus
vendor: schneider model: modicon m241
db: NVD ids: CVE-2024-11737

10 Best Vulnerability Management Tools to Consider

Trust: 3.75

Fetched: Dec. 18, 2024, 9:23 a.m., Published: Nov. 1, 2024, 7:54 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: tripwire model: ip360

No Fix for Critical Command Injection Vulnerability in Legacy D-Link NAS Devices - BackBox.org News

Related entries in the VARIoT vulnerabilities database: VAR-202411-0293

Trust: 5.5

Fetched: Dec. 18, 2024, 9:22 a.m., Published: Nov. 11, 2024, midnight
 Vulnerabilities: command injection
Affected productsExternal IDs
vendor: d-link model: dns-325
vendor: d-link model: dns-320lw
vendor: d-link model: dns-340l
vendor: d-link model: dns-320
vendor: dlink model: dns-325
vendor: dlink model: dns-320lw
vendor: dlink model: dns-340l
vendor: dlink model: dns-320
db: NVD ids: CVE-2024-10914

About the security content of macOS Sequoia 15.1.1 - Apple Support

Trust: 5.75

Fetched: Dec. 17, 2024, 10:16 a.m., Published: Jan. 15, 2001, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: macos
db: NVD ids: CVE-2024-44309, CVE-2024-44308

Update now! Apple releases new security patches for vulnerabilities in iPhones, Macs, and more - Cyber Security Review

Trust: 4.75

Fetched: Dec. 17, 2024, 10:16 a.m., Published: Dec. 12, 2024, 7:03 a.m.
 Vulnerabilities: certificate validation vulnerability
Affected productsExternal IDs
vendor: apple model: software update
vendor: apple model: safari
vendor: sonicwall model: netextender
vendor: sonicwall model: sma100
vendor: sonicwall model: ssl vpn
db: NVD ids: CVE-2024-45490, CVE-2024-48865, CVE-2024-29014

Update Canonical Ubuntu Server: USN-7162-1: curl vulnerability

Trust: 3.25

Fetched: Dec. 17, 2024, 10:14 a.m., Published: Jan. 17, 7162, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: canonical model: ubuntu

Ivanti Releases Security Updates for Multiple Products - Cyber Security Review

Trust: 4.75

Fetched: Dec. 17, 2024, 10:13 a.m., Published: Dec. 11, 2024, 7 a.m.
 Vulnerabilities: certificate validation vulnerability
Affected productsExternal IDs
vendor: apple model: software update
vendor: apple model: safari
vendor: sonicwall model: netextender
vendor: sonicwall model: sma100
vendor: sonicwall model: ssl vpn
db: NVD ids: CVE-2024-48865, CVE-2024-29014

The most common vulnerabilities in your external attack surface - Outpost24

Trust: 3.75

Fetched: Dec. 17, 2024, 10:11 a.m., Published: Sept. 12, 2023, 7:26 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: trend model: security
db: NVD ids: CVE-2022-47986