VARIoT latest news about IoT security

Update your Windows now to avoid Acropalypse vulnerability - BollywoodGags - Bollywood Gags Trust: 3.5 Fetched: March 31, 2023, 9:11 a.m., Published: March 30, 2023, 8:55 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	android
vendor:	google	model:	pixel

db:

NVD

ids:

CVE-2023-28303

Google - these serious security threats are targeting both Android and iOS devices - All About The Tech world! Related entries in the VARIoT vulnerabilities database: VAR-202212-1751, VAR-202108-2051 Trust: 3.75 Fetched: March 31, 2023, 9:10 a.m., Published: March 30, 2023, 8:06 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	pixel
vendor:	google	model:	chrome
vendor:	google	model:	android
vendor:	xiaomi	model:	browser
vendor:	samsung	model:	mobile

db:

NVD

ids:

CVE-2022-3038, CVE-2022-4135, CVE-2022-42856, CVE-2022-3723, CVE-2022-22706, CVE-2022-38181, CVE-2023-0266, CVE-2022-4262, CVE-2021-30900

Update your Windows now to avoid the Acropalypse vulnerability \| Daily Traders Edge Trust: 3.5 Fetched: March 31, 2023, 9:10 a.m., Published: March 30, 2023, 9:46 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	android
vendor:	google	model:	pixel

db:

NVD

ids:

CVE-2023-28303

Update your Windows now to avoid the Acropalypse vulnerability - Cafe Blouberg News Trust: 3.5 Fetched: March 31, 2023, 9:09 a.m., Published: March 30, 2023, 9:08 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	android
vendor:	google	model:	pixel

db:

NVD

ids:

CVE-2023-28303

Update your Windows now to avoid the Acropalypse vulnerability - Bloody Scholars Trust: 3.5 Fetched: March 31, 2023, 9:08 a.m., Published: March 30, 2023, 8:50 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	android
vendor:	google	model:	pixel

db:

NVD

ids:

CVE-2023-28303

Spyware Vendors Caught Exploiting Zero-Day Vulnerabilities on Android and iOS Devices \| Vumetric Cyber Portal Related entries in the VARIoT vulnerabilities database: VAR-202212-1751, VAR-202108-2051 Trust: 5.0 Fetched: March 31, 2023, 9:08 a.m., Published: March 31, 2023, midnight	Vulnerabilities: privilege escalation

Affected products

External IDs

vendor:

google

model:

android

db:

NVD

ids:

CVE-2022-4135, CVE-2022-42856, CVE-2022-3723, CVE-2022-38181, CVE-2021-30900

Apple's March 2023 Updates Addresses Multiple Security Vulnerabilities! - SecPod Blog Related entries in the VARIoT vulnerabilities database: VAR-202205-1326, VAR-202302-1169, VAR-202302-1097 Trust: 5.5 Fetched: March 31, 2023, 9:06 a.m., Published: March 29, 2023, 7:36 a.m.	Vulnerabilities: code execution, denial of service, security bypass...

Affected products

External IDs

vendor:	apple	model:	tvos
vendor:	apple	model:	webkit
vendor:	apple	model:	safari
vendor:	apple	model:	watch
vendor:	apple	model:	icloud
vendor:	apple	model:	apple tv
vendor:	apple	model:	watchos
vendor:	apple	model:	iphone
vendor:	apple	model:	macos
vendor:	apple	model:	ipad
vendor:	apple	model:	ipod touch
vendor:	apple	model:	ipad air

db:

NVD

ids:

CVE-2023-0051, CVE-2023-23537, CVE-2023-23542, CVE-2023-27934, CVE-2023-27969, CVE-2023-27935, CVE-2023-27936, CVE-2023-27958, CVE-2023-27963, CVE-2023-28192, CVE-2023-23523, CVE-2023-27953, CVE-2023-0512, CVE-2023-23533, CVE-2023-27970, CVE-2023-27955, CVE-2023-27959, CVE-2023-27951, CVE-2023-23525, CVE-2022-43552, CVE-2023-23538, CVE-2023-27949, CVE-2023-23532, CVE-2023-27961, CVE-2023-23528, CVE-2023-28194, CVE-2023-27932, CVE-2023-0054, CVE-2023-27968, CVE-2023-0049, CVE-2023-0288, CVE-2023-27944, CVE-2023-28180, CVE-2023-27929, CVE-2023-27956, CVE-2023-23527, CVE-2023-23543, CVE-2023-23526, CVE-2023-27941, CVE-2023-23494, CVE-2023-28182, CVE-2023-28190, CVE-2022-26702, CVE-2023-27931, CVE-2023-27946, CVE-2023-27933, CVE-2023-27943, CVE-2023-27962, CVE-2023-23540, CVE-2023-28200, CVE-2022-43551, CVE-2023-0433, CVE-2023-27954, CVE-2023-23514, CVE-2023-28181, CVE-2023-27928, CVE-2023-27937, CVE-2023-27965, CVE-2023-23535, CVE-2023-28178, CVE-2023-23534, CVE-2023-27952, CVE-2023-23529, CVE-2023-23541, CVE-2023-27942, CVE-2023-27957

Spyware Vendors Caught Exploiting Zero-Day Vulnerabilities on Android and iOS Devices Related entries in the VARIoT vulnerabilities database: VAR-202212-1751, VAR-202108-2051 Trust: 4.75 Fetched: March 31, 2023, 9:04 a.m., Published: March 29, 2023, 1:52 p.m.	Vulnerabilities: privilege escalation

Affected products

External IDs

vendor:	google	model:	android
vendor:	google	model:	chrome
vendor:	samsung	model:	note
vendor:	samsung	model:	mobile

db:

NVD

ids:

CVE-2022-3038, CVE-2022-4135, CVE-2022-42856, CVE-2022-3723, CVE-2023-26083, CVE-2022-22706, CVE-2022-38181, CVE-2023-0266, CVE-2022-4262, CVE-2021-30900

Apple releases security update to fix more than 30 vulnerabilities on iPhones and iPads Trust: 3.0 Fetched: March 31, 2023, 9:03 a.m., Published: March 29, 2023, 9:13 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	apple	model:	webkit
vendor:	apple	model:	safari
vendor:	apple	model:	iphone
vendor:	apple	model:	ipad
vendor:	apple	model:	ipod touch
vendor:	apple	model:	ipad air

Spyware vendors use 0-days and n-days against popular platforms Trust: 4.75 Fetched: March 31, 2023, 9:03 a.m., Published: March 29, 2023, midnight	Vulnerabilities: information leak

Affected products

External IDs

vendor:	google	model:	chrome
vendor:	google	model:	android
vendor:	samsung	model:	samsung firmware
vendor:	samsung	model:	note

db:

NVD

ids:

CVE-2022-3038, CVE-2022-1134, CVE-2023-26083, CVE-2022-22706, CVE-2023-0266, CVE-2022-4262

Update now! Apple fixes actively exploited vulnerability and introduces new features Related entries in the VARIoT vulnerabilities database: VAR-202302-1097 Trust: 5.75 Fetched: March 31, 2023, 9:03 a.m., Published: -	Vulnerabilities: code execution

Affected products

External IDs

vendor:	apple	model:	iphone
vendor:	apple	model:	macos
vendor:	apple	model:	webkit
vendor:	apple	model:	safari
vendor:	apple	model:	ipad

db:

NVD

ids:

CVE-2023-23529

Apple security updates fix 33 iPhone vulnerabilities \| Computer Weekly Related entries in the VARIoT vulnerabilities database: VAR-202302-1097 Trust: 4.75 Fetched: March 31, 2023, 9:02 a.m., Published: March 28, 2023, midnight	Vulnerabilities: code execution

Affected products

External IDs

vendor:	apple	model:	tvos
vendor:	apple	model:	webkit
vendor:	apple	model:	safari
vendor:	apple	model:	watchos
vendor:	apple	model:	iphone
vendor:	apple	model:	macos
vendor:	apple	model:	ipad
vendor:	apple	model:	ipod touch
vendor:	apple	model:	ipad air

db:

NVD

ids:

CVE-2023-27933, CVE-2023-23529, CVE-2023-27969

Microsoft Shares Guidance on Detecting Outlook Vulnerability Exploited by Russian Hackers - Arab Security Consultants Trust: 4.25 Fetched: March 29, 2023, 9:22 a.m., Published: March 28, 2023, 8:31 a.m.	Vulnerabilities: privilege escalation

Affected products

External IDs

db:

NVD

ids:

CVE-2023-23397

Cisco Small Business Routers Multiple Vulnerabilities (cisco-s... \| Tenable® Related entries in the VARIoT vulnerabilities database: VAR-202301-0962 Trust: 4.0 Fetched: March 29, 2023, 9:21 a.m., Published: March 1, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	small business
vendor:	cisco	model:	cisco small business
vendor:	cisco	model:	routers

db:

NVD

ids:

CVE-2023-20025

Detected a vulnerability in the Wi-Fi packet buffer that affects various devices and OS \| From Linux Trust: 3.75 Fetched: March 29, 2023, 9:19 a.m., Published: March 29, 2023, 1:04 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

cisco

model:

access points

db:

NVD

ids:

CVE-2022-47522

iOS 15.7.4 Update for Older Devices Fixes Actively Exploited Vulnerability Related entries in the VARIoT vulnerabilities database: VAR-202302-1097 Trust: 5.25 Fetched: March 29, 2023, 9:18 a.m., Published: March 28, 2023, 12:50 p.m.	Vulnerabilities: use after free, code execution

Affected products

External IDs

vendor:	apple	model:	iphone
vendor:	apple	model:	ipad
vendor:	apple	model:	webkit
vendor:	apple	model:	ipad air
vendor:	apple	model:	ipod touch

db:

NVD

ids:

CVE-2023-27928, CVE-2023-27949, CVE-2023-27969, CVE-2023-27963, CVE-2023-28182, CVE-2023-27961, CVE-2023-23541, CVE-2023-23537, CVE-2023-23529, CVE-2023-27941, CVE-2023-27954, CVE-2023-27946, CVE-2023-27956, CVE-2023-23535, CVE-2023-27936, CVE-2023-23543

Samsung monthly updates: March 2023 security patch released with 50 fixes - SamMobile Trust: 3.5 Fetched: March 29, 2023, 9:18 a.m., Published: March 7, 2023, 5:58 a.m.	Vulnerabilities: access control vulnerability, path traversal, improper access control

Affected products

External IDs

vendor:	google	model:	android
vendor:	samsung	model:	exynos
vendor:	samsung	model:	galaxy

Google Pixel: Cropped or edited images can be recovered Trust: 3.5 Fetched: March 29, 2023, 9:17 a.m., Published: -	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	pixel
vendor:	google	model:	android

db:

NVD

ids:

CVE-2023-21036

Android app from China executed 0-day exploit on millions of devices \| Ars Technica Trust: 3.75 Fetched: March 29, 2023, 9:17 a.m., Published: March 27, 2023, 12:31 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

google

model:

android

db:

NVD

ids:

CVE-2023-20963

Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Low-Entropy Keys Vulnerability Trust: 3.0 Fetched: March 29, 2023, 9:16 a.m., Published: March 22, 2023, 3:49 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	adaptive security appliance software
vendor:	cisco	model:	device manager
vendor:	cisco	model:	asa 5525-x
vendor:	cisco	model:	asa software
vendor:	cisco	model:	asa 5506h-x
vendor:	cisco	model:	clientless ssl vpn
vendor:	cisco	model:	firepower threat defense
vendor:	cisco	model:	series
vendor:	cisco	model:	cisco adaptive security appliance
vendor:	cisco	model:	cisco 7600 series
vendor:	cisco	model:	series routers
vendor:	cisco	model:	cisco adaptive security appliance software
vendor:	cisco	model:	asa 5516-x
vendor:	cisco	model:	asa 5506-x
vendor:	cisco	model:	catalyst
vendor:	cisco	model:	adaptive security appliance
vendor:	cisco	model:	firepower
vendor:	cisco	model:	firepower threat defense software
vendor:	cisco	model:	series switches
vendor:	cisco	model:	firepower 2100
vendor:	cisco	model:	firepower 9300
vendor:	cisco	model:	asdm
vendor:	cisco	model:	catalyst 6500
vendor:	cisco	model:	series industrial security appliances
vendor:	cisco	model:	7600 series
vendor:	cisco	model:	asa 5508-x
vendor:	cisco	model:	catalyst 6500 series
vendor:	cisco	model:	asa 5506w-x
vendor:	cisco	model:	firepower threat defense virtual
vendor:	cisco	model:	routers
vendor:	cisco	model:	cisco catalyst 6500 series

VARIoT news about IoT security