Sign-up

VARIoT news about IoT security

Cisco Users Informed of Vulnerabilities in Identity Services Engine | SecurityWeek.Com

Related entries in the VARIoT vulnerabilities database: VAR-202210-1371

Trust: 5.0

Fetched: Nov. 20, 2022, 9:19 a.m., Published: Nov. 20, 2022, midnight
 Vulnerabilities: cross-site scripting
Affected productsExternal IDs
vendor: cisco model: identity services engine
db: NVD ids: CVE-2022-20822

Clearing the Fog: Text4Shell is a Serious Vulnerability But Not Nearly as Bad As Log4Shell | Spiceworks 1

Trust: 3.75

Fetched: Nov. 20, 2022, 9:19 a.m., Published: Oct. 19, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2022-42889, CVE-2022-33980

Cybersecurity researcher discovers a way to bypass lockscreen on Pixel devices | Technology News,The Indian Express

Trust: 3.5

Fetched: Nov. 20, 2022, 9:18 a.m., Published: Nov. 14, 2022, 10:29 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
vendor: google model: home
vendor: google model: pixel
db: NVD ids: CVE-2022-20465

WhatsApp Fixed Critical Vulnerabilities that Could Let an Attacker Hack Devices Remotely - Automatically Discover and Remediate Using VMDR Mobile | Qualys Security Blog

Trust: 4.5

Fetched: Nov. 20, 2022, 9:17 a.m., Published: Oct. 3, 2022, 9:19 a.m.
 Vulnerabilities: integer overflow, code execution
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2022-36934, CVE-2022-27492

Linux Performance, Benchmarks & Open-Source News - Phoronix

Trust: 3.25

Fetched: Nov. 20, 2022, 9:16 a.m., Published: June 20, 2004, midnight
 Vulnerabilities: privilege escalation, code execution
Affected productsExternal IDs
vendor: google model: chrome
vendor: google model: wifi
vendor: apple model: macos
vendor: canonical model: ubuntu
vendor: asus model: asus
vendor: broadcom model: wifi driver
vendor: broadcom model: linux
vendor: lenovo model: system
vendor: lenovo model: bios
vendor: lenovo model: desktop
vendor: lenovo model: yoga
vendor: lenovo model: updates
vendor: lenovo model: edge

Leader in Cyber Security Solutions | Check Point Software

Trust: 3.25

Fetched: Nov. 20, 2022, 9:15 a.m., Published: Nov. 16, 2022, 4:30 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: check point model: check point

Apple Data Breaches: Full Timeline Through 2022

Trust: 3.5

Fetched: Nov. 20, 2022, 9:15 a.m., Published: Oct. 3, 2022, 5:48 p.m.
 Vulnerabilities: brute force attack
Affected productsExternal IDs
vendor: apple model: macos
vendor: apple model: ipad
vendor: apple model: webkit
vendor: apple model: safari
vendor: apple model: icloud
vendor: apple model: iphone

Products, Solutions, and Services - Cisco

Trust: 3.25

Fetched: Nov. 20, 2022, 9:11 a.m., Published: Nov. 16, 2022, 2:44 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: technical support

New Lenovo Notebook Models Affected By UEFI Firmware Vulnerabilities | IT Security News

Trust: 4.0

Fetched: Nov. 18, 2022, 9:18 a.m., Published: Nov. 10, 2022, 5:46 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: lenovo model: yoga
vendor: lenovo model: notebook

High Severity Vulnerabilities Reported in F5 BIG-IP and BIG-IQ Devices - Cypro

Related entries in the VARIoT vulnerabilities database: VAR-202210-1013

Trust: 4.0

Fetched: Nov. 18, 2022, 9:17 a.m., Published: Nov. 17, 2022, 6:58 a.m.
 Vulnerabilities: buffer overrun, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2022-3786, CVE-2022-22241, CVE-2022-3602

High Severity Vulnerabilities Reported in F5 BIG-IP and BIG-IQ Devices - iHash

Related entries in the VARIoT vulnerabilities database: VAR-202211-1118, VAR-202211-1139

Trust: 5.0

Fetched: Nov. 18, 2022, 9:16 a.m., Published: Nov. 17, 2022, 6:58 a.m.
 Vulnerabilities: request forgery, security bypass, code execution...
Affected productsExternal IDs
db: NVD ids: CVE-2022-41800, CVE-2022-41622

Google Pixel Smartphone Vulnerability Allows Users to Bypass Lock Screen

Trust: 3.5

Fetched: Nov. 18, 2022, 9:16 a.m., Published: Nov. 17, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
vendor: google model: pixel
db: NVD ids: CVE-2022-20465

New Vulnerabilities Tuesday 15 November - CND News and Blog

Trust: 4.75

Fetched: Nov. 18, 2022, 9:14 a.m., Published: Nov. 15, 2022, midnight
 Vulnerabilities: arbitrary command execution, authentication vulnerability, command execution...
Affected productsExternal IDs
vendor: phoenix contact model: mguard

High Severity Vulnerabilities Reported in F5 BIG-IP and BIG-IQ Devices

Related entries in the VARIoT vulnerabilities database: VAR-202211-1118, VAR-202211-1139

Trust: 5.0

Fetched: Nov. 18, 2022, 9:12 a.m., Published: Nov. 17, 2022, 6:58 a.m.
 Vulnerabilities: request forgery, security bypass, code execution...
Affected productsExternal IDs
db: NVD ids: CVE-2022-41800, CVE-2022-41622

PoC Published for Fortinet Vulnerability as Mass Exploitation Attempts Begin | SecurityWeek.Com

Related entries in the VARIoT vulnerabilities database: VAR-202210-0198

Trust: 5.75

Fetched: Nov. 18, 2022, 9:11 a.m., Published: Nov. 18, 2022, midnight
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2022-40684

Cisco Secure Web Appliance Content Encoding Filter Bypass Vulnerability - Cisco

Trust: 3.0

Fetched: Nov. 18, 2022, 9:11 a.m., Published: Oct. 21, 2022, 8:37 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: asyncos
vendor: cisco model: web security appliance
vendor: cisco model: cisco web security appliance
vendor: cisco model: cisco asyncos
vendor: cisco model: asyncos software

CISA reveals cyber security vulnerabilities in Siemens, Hitachi Energy, Johnson Controls, Delta Electronics - Industrial Cyber

Trust: 5.25

Fetched: Nov. 18, 2022, 9:10 a.m., Published: Oct. 26, 2022, 8:12 a.m.
 Vulnerabilities: sql injection, authentication bypass, authentication vulnerability...
Affected productsExternal IDs
vendor: trend micro model: security
vendor: trend model: security
vendor: delta model: diaenergie
vendor: delta electronics model: diaenergie

Appliance mode iControl REST vulnerability CVE-2022-41800

Related entries in the VARIoT vulnerabilities database: VAR-202211-1118

Trust: 4.0

Fetched: Nov. 18, 2022, 9:10 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: mesh model: mesh
db: NVD ids: CVE-2022-41800

New OpenSSL Vulnerabilities (CVE-2022-3602 and CVE-2022-3786) Are a Big Deal for IoT Devices, How Can You Stay Protected? : IOT

Trust: 3.25

Fetched: Nov. 16, 2022, 9:29 a.m., Published: March 16, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2022-3786, CVE-2022-3602

Project Zero: A Very Powerful Clipboard: Analysis of a Samsung in-the-wild exploit chain

Related entries in the VARIoT vulnerabilities database: VAR-201910-0902

Trust: 5.25

Fetched: Nov. 16, 2022, 9:21 a.m., Published: Nov. 4, 2022, midnight
 Vulnerabilities: code execution, memory corruption, information leak
Affected productsExternal IDs
vendor: google model: pixel
vendor: google model: android
vendor: google model: chrome
vendor: samsung model: samsung firmware
vendor: samsung model: note
vendor: samsung model: notes
vendor: samsung model: exynos
vendor: apple model: watch
db: NVD ids: CVE-2021-25337, CVE-2021-25370, CVE-2021-25369, CVE-2019-2215