Sign-up

VARIoT news about IoT security

Siemens SCALANCE X-200IRT Devices | CISA

Related entries in the VARIoT vulnerabilities database: VAR-202304-0694

Trust: 3.75

Fetched: April 14, 2023, 9:15 a.m., Published: Jan. 10, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: siemens model: scalance x202-2irt
vendor: siemens model: scalance xf202-2p irt
vendor: siemens model: scalance xf204irt
vendor: siemens model: scalance x204irt
vendor: siemens model: scalance xf204
vendor: siemens model: scalance x201-3p irt
vendor: siemens model: scalance xf204-2ba irt
vendor: siemens model: scalance x202-2p irt pro
vendor: siemens model: scalance x200
vendor: siemens model: scalance xf201-3p irt
vendor: siemens model: scalance
vendor: siemens model: scalance x-200irt
vendor: siemens model: scalance x201-3p irt pro
vendor: siemens model: scalance x200-4p irt
vendor: siemens model: scalance x202-2p irt
db: NVD ids: CVE-2023-29054

Cisco Secure Network Analytics Remote Code Execution Vulnerability

Trust: 4.0

Fetched: April 14, 2023, 9:15 a.m., Published: April 5, 2023, 3:47 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs

Siemens SIPROTEC 5 Devices | CISA

Related entries in the VARIoT vulnerabilities database: VAR-202304-0737

Trust: 3.5

Fetched: April 14, 2023, 9:14 a.m., Published: April 5, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: siemens model: siprotec 5
vendor: siemens model: cp200
vendor: siemens model: siprotec
vendor: siemens model: cp100
vendor: siemens model: cp300
db: NVD ids: CVE-2023-28766

DSA-2023-074: Dell Trusted Device Agent Security Update for an Improper Installation Permissions Vulnerability | Dell Polska

Trust: 3.0

Fetched: April 14, 2023, 9:14 a.m., Published: May 3, 2000, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2023-25542

Cisco Adaptive Security Appliance Software, Firepower Threat Defense Software, IOS Software, and IOS XE Software IPv6 DHCP (DHCPv6) Client Denial of Service Vulnerability

Trust: 4.0

Fetched: April 14, 2023, 9:13 a.m., Published: March 22, 2023, 11:33 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: ios software
vendor: cisco model: cisco adaptive security appliance
vendor: cisco model: asa software
vendor: cisco model: ios xe
vendor: cisco model: adaptive security appliance software
vendor: cisco model: firepower threat defense
vendor: cisco model: firepower
vendor: cisco model: ios xe software
vendor: cisco model: adaptive security appliance
vendor: cisco model: firepower threat defense software
vendor: cisco model: cisco ios
vendor: cisco model: cisco adaptive security appliance software

Application scans vulnerability on Android devices - GameCurse

Trust: 3.25

Fetched: April 12, 2023, 9:32 a.m., Published: April 12, 2023, 7:54 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

OESIS Framework April 04, 2023 Release - OPSWAT

Trust: 3.75

Fetched: April 12, 2023, 9:31 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: jiangmin model: antivirus
vendor: jiangmin model: jiangmin
vendor: jiangmin model: jiangmin antivirus
db: NVD ids: CVE-2023-1645, CVE-2023-1630, CVE-2023-1642, CVE-2019-18425, CVE-2023-20056, CVE-2023-1638, CVE-2023-1639, CVE-2023-1631, CVE-2023-1544, CVE-2023-1641, CVE-2019-18424, CVE-2019-18423, CVE-2022-48426, CVE-2023-1644, CVE-2023-1628, CVE-2019-18421, CVE-2023-1629, CVE-2023-1640, CVE-2023-24094, CVE-2023-1643, CVE-2023-1646

Android April 2023 Security Updates fix several critical vulnerabilities - gHacks Tech News

Trust: 4.5

Fetched: April 12, 2023, 9:31 a.m., Published: April 4, 2023, 4:42 a.m.
 Vulnerabilities: denial of service, code execution, information disclosure
Affected productsExternal IDs
vendor: google model: android
vendor: google model: wifi

Actors, Threats and Vulnerabilities 3 April to 9 April 2023 - HiveForce Labs Threat Digest

Trust: 4.0

Fetched: April 12, 2023, 9:26 a.m., Published: April 11, 2023, 11:16 a.m.
 Vulnerabilities: command injection
Affected productsExternal IDs

Apple iOS/iPadOS 16.4.1 and macOS 13.3.1 Vulnerability Audit - Lansweeper

Trust: 5.5

Fetched: April 12, 2023, 9:25 a.m., Published: -
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: ipad
vendor: apple model: macos
db: NVD ids: CVE-2023-28206, CVE-2023-28205

About the security content of iOS 16 - Apple Support

Related entries in the VARIoT vulnerabilities database: VAR-202210-1476, VAR-202210-1466, VAR-202210-2059, VAR-202210-2056, VAR-202210-1462, VAR-202210-1487, VAR-202210-1470, VAR-202209-0772, VAR-202209-0761, VAR-202210-1486, VAR-202210-1493, VAR-202209-0762, VAR-202210-1472, VAR-202210-1474, VAR-202210-2055, VAR-202209-0760, VAR-202210-2057, VAR-202209-0770, VAR-202210-1478, VAR-202210-1471, VAR-202210-1485, VAR-202210-1465, VAR-202209-0769, VAR-202210-1494, VAR-202211-0019, VAR-202210-1468, VAR-202209-0768, VAR-202211-0190, VAR-202209-0763, VAR-202209-0759, VAR-202210-1495, VAR-202210-2058, VAR-202210-1469, VAR-202210-1489, VAR-202211-0071, VAR-202212-1537, VAR-202207-1498, VAR-202210-1482, VAR-202108-1856, VAR-202212-1527, VAR-202209-0764, VAR-202210-1464, VAR-202210-2060, VAR-202209-0771, VAR-202205-1311, VAR-202205-0743, VAR-202210-1497, VAR-202203-0112, VAR-202209-0773

Trust: 5.25

Fetched: April 12, 2023, 9:23 a.m., Published: April 16, 2023, midnight
 Vulnerabilities: memory corruption, buffer overflow, configuration issue...
Affected productsExternal IDs
vendor: trend model: security
vendor: trend micro model: security
vendor: check point model: check point
vendor: apple model: watch
vendor: apple model: iphone
vendor: apple model: webkit
vendor: apple model: safari
vendor: apple model: apple tv
db: NVD ids: CVE-2022-32827, CVE-2022-32928, CVE-2022-32903, CVE-2022-32859, CVE-2022-32875, CVE-2022-32898, CVE-2022-32892, CVE-2022-32908, CVE-2022-32886, CVE-2022-42790, CVE-2022-32918, CVE-2022-32872, CVE-2022-32881, CVE-2022-32913, CVE-2022-32907, CVE-2022-32795, CVE-2022-32925, CVE-2022-32912, CVE-2022-32879, CVE-2022-32914, CVE-2022-42793, CVE-2022-32866, CVE-2022-46709, CVE-2022-32911, CVE-2022-32858, CVE-2022-32889, CVE-2022-32867, CVE-2022-32868, CVE-2022-32887, CVE-2022-32883, CVE-2022-32917, CVE-2022-32870, CVE-2022-32835, CVE-2022-42791, CVE-2022-32888, CVE-2022-32909, CVE-2022-32916, CVE-2022-32793, CVE-2022-42795, CVE-2021-36690, CVE-2022-32833, CVE-2022-32854, CVE-2022-32871, CVE-2022-32865, CVE-2022-32877, CVE-2022-32891, CVE-2022-26744, CVE-2022-1622, CVE-2022-32899, CVE-2022-22643, CVE-2022-32864

Android Vulnerability 2023 Report: Google Releases Patches

Trust: 5.75

Fetched: April 12, 2023, 9:23 a.m., Published: April 8, 2023, 5:29 a.m.
 Vulnerabilities: privilege escalation, code execution
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2023-21096, CVE-2023-21085, CVE-2023-23397, CVE-2022-38181

Apple issues security update after discovering a flaw that could let hackers take over iPhones | Daily Mail Online

Trust: 5.75

Fetched: April 12, 2023, 9:22 a.m., Published: April 11, 2023, 10:26 a.m.
 Vulnerabilities: use after free
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: macos
vendor: apple model: webkit
vendor: apple model: ipad air
vendor: apple model: ipad
vendor: google model: pixel
db: NVD ids: CVE-2023-28206, CVE-2023-28205

Apple releases emergency updates for two known-to-be-exploited vulnerabilities

Trust: 4.25

Fetched: April 12, 2023, 9:22 a.m., Published: April 11, 2023, 12:02 p.m.
 Vulnerabilities: use after free, code execution
Affected productsExternal IDs
vendor: apple model: safari
vendor: apple model: iphone
vendor: apple model: webkit
vendor: apple model: ipad
vendor: apple model: macos
db: NVD ids: CVE-2023-28206, CVE-2023-28205

Apple Patches Two Zero-Days Exploited in the Wild - Infosecurity Magazine

Trust: 5.75

Fetched: April 12, 2023, 9:21 a.m., Published: April 11, 2023, 5 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: macos
vendor: apple model: webkit
vendor: apple model: safari
vendor: apple model: ipad
vendor: google model: android
db: NVD ids: CVE-2023-28206, CVE-2023-28205

Keysight N6845A Geolocation Server | CISA

Trust: 5.75

Fetched: April 12, 2023, 9:21 a.m., Published: March 7, 2023, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: trend micro model: security
vendor: trend model: security
db: NVD ids: CVE-2023-1399

Get vulnerability by ID | Microsoft Learn

Trust: 3.0

Fetched: April 12, 2023, 9:20 a.m., Published: Dec. 18, 2020, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2019-0608

[no-title]

Related entries in the VARIoT vulnerabilities database: VAR-202302-1271, VAR-202210-0198, VAR-202112-1045, VAR-201906-0815, VAR-201710-0216

Trust: 4.25

Fetched: April 12, 2023, 9:19 a.m., Published: April 1, 2023, midnight
 Vulnerabilities: denial of service, sql injection, buffer overflow...
Affected productsExternal IDs
vendor: trend micro model: antivirus
vendor: trend micro model: security
vendor: sophos model: firewall
vendor: orange model: web server
vendor: checkpoint model: next generation
vendor: cisco model: access points
vendor: fortigate model: fortios
vendor: palo model: ssl vpn
vendor: palo model: networks
vendor: palo model: firewall
vendor: barracuda model: barracuda
vendor: trend model: antivirus
vendor: trend model: security
db: NVD ids: CVE-2022-39952, CVE-2021-32589, CVE-2023-26209, CVE-2022-40684, CVE-2021-41028, CVE-2018-13379, CVE-2017-14182

Vulnerability Alert: How a Benchmark Test Uncovered Vulnerabilities in Over 80,000 QNAP Devices - Global Security Mag Online

Trust: 3.75

Fetched: April 12, 2023, 9:19 a.m., Published: April 4, 2023, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2022-27598, CVE-2022-27597

Get vulnerability by ID | Microsoft Learn

Trust: 3.0

Fetched: April 12, 2023, 9:18 a.m., Published: Dec. 18, 2020, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2019-0608