VARIoT news about IoT security

Trust: 3.0

Fetched: June 1, 2022, 8:58 a.m., Published: May 13, 2022, 11:38 a.m.
Vulnerabilities: -
Affected productsExternal IDs
vendor: ring model: ring

Trust: 3.75

Fetched: June 1, 2022, 8:58 a.m., Published: -
Vulnerabilities: -
Affected productsExternal IDs
vendor: lenovo model: notebook
vendor: lenovo model: system
vendor: lenovo model: bios
vendor: lenovo model: updates
db: NVD ids: CVE-2021-3972, CVE-2021-3971, CVE-2021-3970

Trust: 3.5

Fetched: June 1, 2022, 8:58 a.m., Published: April 22, 2021, midnight
Vulnerabilities: privilege escalation, restriction bypass, cross-site scripting...
Affected productsExternal IDs
vendor: cisco model: firepower threat defense
vendor: cisco model: cisco umbrella virtual appliance
vendor: cisco model: telepresence
vendor: cisco model: telepresence collaboration endpoint
vendor: cisco model: cisco telepresence
vendor: cisco model: cisco firepower threat defense software
vendor: cisco model: webex meetings
vendor: cisco model: roomos
vendor: cisco model: cisco roomos
vendor: cisco model: unified communications
vendor: cisco model: umbrella
vendor: cisco model: adaptive security appliance software
vendor: cisco model: cisco adaptive security appliance software
vendor: cisco model: adaptive security appliance
vendor: cisco model: firepower threat defense software
vendor: cisco model: firepower
vendor: cisco model: umbrella virtual appliance
vendor: cisco model: cisco webex meetings
vendor: cisco model: cisco adaptive security appliance
vendor: cisco model: cisco webex
vendor: cisco model: webex
Related entries in the VARIoT vulnerabilities database: VAR-202202-0147, VAR-202202-0129

Trust: 5.5

Fetched: June 1, 2022, 8:58 a.m., Published: June 16, 2022, midnight
Vulnerabilities: buffer overflow
Affected productsExternal IDs
vendor: siemens model: simatic
vendor: dell model: bios
db: NVD ids: CVE-2021-45969, CVE-2021-42554, CVE-2021-45971, CVE-2021-45970, CVE-2021-39297, CVE-2021-42059
Related entries in the VARIoT vulnerabilities database: VAR-202205-0394

Trust: 5.75

Fetched: June 1, 2022, 8:58 a.m., Published: May 9, 2022, 11:35 p.m.
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: serve model: serve
db: NVD ids: CVE-2022-1388

Trust: 5.5

Fetched: June 1, 2022, 8:58 a.m., Published: March 2, 2022, 6 a.m.
Vulnerabilities: default credentials
Affected productsExternal IDs
vendor: palo model: networks
vendor: palo alto networks model: networks
db: NVD ids: CVE-2020-12043, CVE-2016-9355, CVE-2020-12040, CVE-2019-12255, CVE-2016-8375, CVE-2019-12264, CVE-2020-25165, CVE-2020-12041, CVE-2020-12045, CVE-2020-12047

Trust: 3.0

Fetched: June 1, 2022, 8:58 a.m., Published: May 31, 2022, 11:29 p.m.
Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: cisco adaptive security appliance software
vendor: cisco model: adaptive security appliance
vendor: cisco model: clientless ssl vpn
vendor: cisco model: asa software
vendor: cisco model: cisco adaptive security appliance
vendor: cisco model: adaptive security appliance software

Trust: 3.0

Fetched: June 1, 2022, 8:58 a.m., Published: May 12, 2022, 2:55 p.m.
Vulnerabilities: -
Affected productsExternal IDs
vendor: trend model: security
Related entries in the VARIoT vulnerabilities database: VAR-202203-0236, VAR-202203-0237, VAR-202203-0235, VAR-202108-1890

Trust: 4.25

Fetched: June 1, 2022, 8:58 a.m., Published: March 8, 2022, 11 a.m.
Vulnerabilities: buffer overflow, memory corruption, code execution...
Affected productsExternal IDs
vendor: schneider electric model: monitor
vendor: schneider model: monitor
db: NVD ids: CVE-2022-22806, CVE-2022-22805, CVE-2022-0715, CVE-2021-37160

Trust: 5.25

Fetched: June 1, 2022, 8:58 a.m., Published: March 23, 2022, 2:50 p.m.
Vulnerabilities: sql injection
Affected productsExternal IDs
vendor: sophos model: sophos utm
db: NVD ids: CVE-2022-0386, CVE-2022-0652

Trust: 5.0

Fetched: June 1, 2022, 8:58 a.m., Published: March 17, 2022, 5:54 a.m.
Vulnerabilities: information leakage, code execution
Affected productsExternal IDs
vendor: palo model: networks
vendor: palo alto networks model: networks
db: NVD ids: CVE-2021-28372
Related entries in the VARIoT vulnerabilities database: VAR-201908-0705, VAR-201908-0712

Trust: 4.5

Fetched: June 1, 2022, 8:58 a.m., Published: March 3, 2022, 7:44 p.m.
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: palo model: networks
vendor: palo alto networks model: networks
db: NVD ids: CVE-2019-12264, CVE-2019-12255
Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 4.25

Fetched: June 1, 2022, 8:58 a.m., Published: June 3, 2022, midnight
Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228
Related entries in the VARIoT vulnerabilities database: VAR-202110-0396, VAR-202110-0397

Trust: 4.0

Fetched: June 1, 2022, 8:58 a.m., Published: May 1, 2022, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: router
db: NVD ids: CVE-2021-21748, CVE-2021-21745

Trust: 5.25

Fetched: June 1, 2022, 8:58 a.m., Published: April 26, 2022, 4 p.m.
Vulnerabilities: traversal attack, information leak, code execution...
Affected productsExternal IDs
vendor: avahi model: avahi
vendor: freedesktop.org model: systemd
vendor: freedesktop model: systemd
vendor: blueman model: blueman
db: NVD ids: CVE-2022-29799, CVE-2022-0987, CVE-2022-29800
Related entries in the VARIoT vulnerabilities database: VAR-202203-0027

Trust: 4.25

Fetched: June 1, 2022, 8:58 a.m., Published: March 1, 2022, midnight
Vulnerabilities: code execution, information disclosure, denial of service
Affected productsExternal IDs
vendor: google model: android
vendor: google model: pixel
vendor: nokia model: nokia
vendor: samsung model: mobile
vendor: samsung model: notes
vendor: samsung model: samsung
vendor: huawei model: huawei
vendor: motorola model: motorola
vendor: motorola model: android
vendor: broadcom model: broadcom
db: NVD ids: CVE-2022-20048, CVE-2021-39694, CVE-2022-20047, CVE-2021-1950, CVE-2021-35110, CVE-2021-30332, CVE-2021-30328, CVE-2021-1942, CVE-2021-30333, CVE-2021-39689, CVE-2021-39667, CVE-2021-30329, CVE-2022-20053

Trust: 3.5

Fetched: June 1, 2022, 8:58 a.m., Published: March 3, 2022, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: palo model: networks
vendor: palo alto networks model: networks
Related entries in the VARIoT vulnerabilities database: VAR-202112-0901

Trust: 5.5

Fetched: June 1, 2022, 8:58 a.m., Published: April 21, 2022, 7:22 p.m.
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: google model: android
vendor: check point model: check point
db: NVD ids: CVE-2021-30351, CVE-2021-0674, CVE-2021-0675

Trust: 3.75

Fetched: June 1, 2022, 8:58 a.m., Published: April 21, 2022, 10:21 p.m.
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: itunes
vendor: check point model: check point

Trust: 4.5

Fetched: June 1, 2022, 8:58 a.m., Published: May 27, 2022, 3:50 p.m.
Vulnerabilities: command injection, code injection
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2021-42600, CVE-2021-42598, CVE-2021-42599, CVE-2021-42601