VARIoT latest news about IoT security

CVE-2024-34617: Vulnerability in Samsung Mobile Devices and Mitigation Strategies Trust: 3.75 Fetched: Oct. 30, 2024, 9:20 a.m., Published: Aug. 7, 2024, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	samsung	model:	mobile
vendor:	samsung	model:	samsung
vendor:	samsung	model:	samsung mobile
vendor:	samsung	model:	mobile devices

db:

NVD

ids:

CVE-2024-34617

Xerox Printers Vulnerability Let Attackers Remotely Takeover Devices Trust: 5.0 Fetched: Oct. 30, 2024, 9:19 a.m., Published: Oct. 23, 2024, 4:45 p.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:	xerox	model:	altalink c8030
vendor:	xerox	model:	altalink b8045
vendor:	xerox	model:	workcentre

db:

NVD

ids:

CVE-2024-6333

Solar-Log Base 15 \| CISA Trust: 5.0 Fetched: Oct. 30, 2024, 9:19 a.m., Published: Oct. 15, 2024, midnight	Vulnerabilities: cross-site scripting

Affected products

External IDs

db:

NVD

ids:

CVE-2023-46344

New Research Reveals Spectre Vulnerability Persists in Latest AMD and Intel Processors Related entries in the VARIoT vulnerabilities database: VAR-201801-0826 Trust: 3.75 Fetched: Oct. 30, 2024, 9:16 a.m., Published: Oct. 29, 2024, 5:53 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

dram

model:

dram

db:

NVD

ids:

CVE-2023-38575, CVE-2017-5715, CVE-2022-23824

How Insecure Network Devices Can Expose Data Centers to Attack Trust: 3.75 Fetched: Oct. 29, 2024, 9:39 a.m., Published: Oct. 5, 2024, midnight	Vulnerabilities: code execution

Affected products

External IDs

vendor:	cisco	model:	routers
vendor:	cisco	model:	nx-os
vendor:	cisco	model:	meeting
vendor:	cisco	model:	router

Wi-Fi Alliance test suite has a worrying security flaw \| TechRadar Trust: 3.75 Fetched: Oct. 29, 2024, 9:39 a.m., Published: Oct. 28, 2024, 5:46 p.m.	Vulnerabilities: command injection, code execution

Affected products	External IDs

Revealing the Risks: Key Takeaways from Pwn2Own Ireland 2024 on Home and Office Device Security - NAS Compares Trust: 5.0 Fetched: Oct. 29, 2024, 9:38 a.m., Published: Oct. 29, 2024, midnight	Vulnerabilities: memory corruption, authentication bypass, command injection...

Affected products

External IDs

vendor:	sonos	model:	sonos
vendor:	lexmark	model:	lexmark
vendor:	lexmark	model:	printer
vendor:	lexmark	model:	lexmark printer
vendor:	samsung	model:	samsung
vendor:	samsung	model:	printers
vendor:	samsung	model:	note
vendor:	samsung	model:	samsung galaxy
vendor:	samsung	model:	printer
vendor:	samsung	model:	mobile
vendor:	samsung	model:	galaxy
vendor:	samsung	model:	mobile phones
vendor:	synology	model:	drive
vendor:	synology	model:	diskstation

Samsung phone users exposed to EoP attacks, Google warns • The Register Trust: 3.75 Fetched: Oct. 29, 2024, 9:37 a.m., Published: -	Vulnerabilities: -

Affected products

External IDs

vendor:	samsung	model:	exynos
vendor:	samsung	model:	mobile
vendor:	samsung	model:	mobile devices
vendor:	samsung	model:	note
vendor:	samsung	model:	samsung

db:

NVD

ids:

CVE-2024-44068

Hacking Smart Buildings. If you are in IT, you are probably not… \| by Robert Vamosi \| Oct, 2024 \| Medium Trust: 4.25 Fetched: Oct. 29, 2024, 9:30 a.m., Published: Oct. 29, 2024, midnight	Vulnerabilities: buffer overflow, denial of service, default password...

Affected products

External IDs

vendor:	cisco	model:	netscaler gateway
vendor:	cisco	model:	router
vendor:	samsung	model:	samsung
vendor:	samsung	model:	notes
vendor:	samsung	model:	mobile
vendor:	google	model:	home
vendor:	essential	model:	phone
vendor:	sophos	model:	mobile
vendor:	trend	model:	internet security
vendor:	trend	model:	security
vendor:	citrix	model:	gateway
vendor:	citrix	model:	netscaler
vendor:	citrix	model:	netscaler gateway

Vulnerability Recap 10/28/24: Cisco, Fortinet, VMware Trust: 5.25 Fetched: Oct. 29, 2024, 9:29 a.m., Published: Oct. 28, 2024, 9:51 p.m.	Vulnerabilities: denial of service, command injection, resource exhaustion...

Affected products

External IDs

vendor:	cisco	model:	adaptive security appliance
vendor:	cisco	model:	firepower
vendor:	cisco	model:	firepower threat defense
vendor:	cisco	model:	cisco adaptive security appliance
vendor:	samsung	model:	samsung
vendor:	samsung	model:	mobile
vendor:	samsung	model:	exynos
vendor:	samsung	model:	samsung mobile

db:

NVD

ids:

CVE-2024-20481, CVE-2024-44068, CVE-2024-47575, CVE-2024-38094, CVE-2024-38813, CVE-2024-38812

Hack Whatsapp Account In Two Minutes Flat: Tips And Advice [2ad2d] Trust: 3.75 Fetched: Oct. 29, 2024, 9:28 a.m., Published: Oct. 1, 2024, midnight	Vulnerabilities: cross-site scripting

Affected products

External IDs

vendor:

essential

model:

phone

Fortinet FortiManager zero-day flaw exploited since June \| TechTarget Trust: 4.75 Fetched: Oct. 29, 2024, 9:28 a.m., Published: Oct. 24, 2024, midnight	Vulnerabilities: authentication vulnerability

Affected products

External IDs

db:

NVD

ids:

CVE-2024-47575

Security Vulnerabilities In Smart Home Ai \| Restackio Trust: 3.25 Fetched: Oct. 29, 2024, 9:27 a.m., Published: Oct. 29, 2024, midnight	Vulnerabilities: -

Affected products	External IDs

Tenable reveals vulnerability in Open Policy Agent for Windows Trust: 5.25 Fetched: Oct. 29, 2024, 9:27 a.m., Published: Oct. 28, 2024, 6:47 p.m.	Vulnerabilities: authentication vulnerability

Affected products

External IDs

db:

NVD

ids:

CVE-2024-8260

Cisco warns actively exploited CVE can lead to DoS attacks against VPN services \| Cybersecurity Dive Trust: 5.75 Fetched: Oct. 29, 2024, 9:26 a.m., Published: Oct. 28, 2024, midnight	Vulnerabilities: denial of service

Affected products

External IDs

vendor:	sonicwall	model:	remote access
vendor:	cisco	model:	adaptive security appliance software
vendor:	cisco	model:	firepower threat defense
vendor:	cisco	model:	cisco adaptive security appliance software
vendor:	cisco	model:	adaptive security appliance
vendor:	cisco	model:	cisco adaptive security appliance
vendor:	cisco	model:	firepower
vendor:	check point	model:	check point

db:

NVD

ids:

CVE-2024-20481

Mitigating a Major Wi-Fi Chipset Vulnerability: What You Need to Know Trust: 3.5 Fetched: Oct. 29, 2024, 9:26 a.m., Published: Oct. 29, 2024, midnight	Vulnerabilities: buffer overflow, denial of service, code execution

Affected products	External IDs

What Is Vulnerability Assessment? Types & Benefits Trust: 3.5 Fetched: Oct. 29, 2024, 9:20 a.m., Published: Oct. 29, 2024, midnight	Vulnerabilities: denial of service, sql injection, request forgery...

Affected products	External IDs

Access Denied Trust: 3.25 Fetched: Oct. 29, 2024, 9:19 a.m., Published: May 19, 2024, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

samsung

model:

samsung

Access Denied Trust: 3.25 Fetched: Oct. 29, 2024, 9:19 a.m., Published: May 19, 2024, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

samsung

model:

samsung

New Vulnerabilities Identified In Philips Smart Lighting And Matrix Door Controller Trust: 4.25 Fetched: Oct. 29, 2024, 9:18 a.m., Published: Oct. 28, 2024, 3:14 p.m.	Vulnerabilities: authentication bypass

Affected products	External IDs

VARIoT news about IoT security