VARIoT news about IoT security

Related entries in the VARIoT vulnerabilities database: VAR-202204-0113, VAR-202204-0119

Trust: 4.25

Fetched: June 1, 2022, 8:58 a.m., Published: April 1, 2022, midnight
Vulnerabilities: code execution, information disclosure, denial of service
Affected productsExternal IDs
vendor: google model: android
vendor: google model: pixel
vendor: nokia model: nokia
vendor: samsung model: mobile
vendor: samsung model: notes
vendor: samsung model: samsung
vendor: huawei model: huawei
vendor: motorola model: motorola
vendor: motorola model: android
vendor: broadcom model: broadcom
db: NVD ids: CVE-2022-20081, CVE-2021-39804, CVE-2021-30281, CVE-2021-30338, CVE-2021-30347, CVE-2021-39799, CVE-2021-35104, CVE-2021-39808, CVE-2021-30344, CVE-2021-30340, CVE-2021-39805, CVE-2021-25477, CVE-2021-30350, CVE-2021-30345, CVE-2021-35100, CVE-2021-30349, CVE-2021-39795, CVE-2021-39803, CVE-2021-30342, CVE-2021-39807, CVE-2021-39798, CVE-2021-30346, CVE-2021-0694, CVE-2021-39797, CVE-2021-39796, CVE-2021-35070, CVE-2021-30339, CVE-2021-30341, CVE-2021-30343, CVE-2021-39809, CVE-2021-39794

Trust: 3.5

Fetched: June 1, 2022, 8:58 a.m., Published: May 31, 2022, 11:30 p.m.
Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: firepower threat defense
vendor: cisco model: firepower threat defense software
vendor: cisco model: cisco firepower management center
vendor: cisco model: firepower
vendor: cisco model: firepower management center
vendor: cisco model: cisco firepower threat defense software
vendor: snort model: snort
Related entries in the VARIoT vulnerabilities database: VAR-202203-0236, VAR-202203-0237, VAR-202203-0235

Trust: 4.5

Fetched: June 1, 2022, 8:58 a.m., Published: June 1, 2022, midnight
Vulnerabilities: buffer overflow, code execution, authentication bypass
Affected productsExternal IDs
vendor: schneider model: concept
vendor: schneider electric model: concept
db: NVD ids: CVE-2022-22806, CVE-2022-22805, CVE-2022-0715

Trust: 4.5

Fetched: June 1, 2022, 8:58 a.m., Published: March 8, 2022, midnight
Vulnerabilities: code execution, information disclosure
Affected productsExternal IDs
db: NVD ids: CVE-2022-25251, CVE-2022-25247, CVE-2022-25246

Trust: 3.75

Fetched: June 1, 2022, 8:58 a.m., Published: April 19, 2022, 1:11 p.m.
Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: ios xe software
vendor: cisco model: ios xe
vendor: cisco model: cisco ios

Trust: 4.5

Fetched: June 1, 2022, 8:58 a.m., Published: June 2, 2022, midnight
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: google model: google chrome
vendor: google model: chrome
db: NVD ids: CVE-2019-9535
Related entries in the VARIoT vulnerabilities database: VAR-202003-1707

Trust: 5.75

Fetched: June 1, 2022, 8:58 a.m., Published: April 26, 2022, midnight
Vulnerabilities: command injection
Affected productsExternal IDs
vendor: vbulletin model: vbulletin
db: NVD ids: CVE-2020-17496, CVE-2020-9054, CVE-2019-16759
Related entries in the VARIoT vulnerabilities database: VAR-202205-0394

Trust: 3.25

Fetched: June 1, 2022, 8:58 a.m., Published: June 1, 2022, midnight
Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2022-1388
Related entries in the VARIoT vulnerabilities database: VAR-202205-0239

Trust: 4.25

Fetched: June 1, 2022, 8:58 a.m., Published: May 1, 2022, midnight
Vulnerabilities: code execution, information disclosure, denial of service
Affected productsExternal IDs
vendor: google model: android
vendor: google model: pixel
vendor: nokia model: nokia
vendor: samsung model: mobile
vendor: samsung model: notes
vendor: samsung model: samsung
vendor: samsung model: note
vendor: huawei model: huawei
vendor: motorola model: motorola
vendor: motorola model: android
vendor: broadcom model: broadcom
db: NVD ids: CVE-2022-20113, CVE-2022-20114, CVE-2022-20112, CVE-2021-35078, CVE-2022-20110, CVE-2022-20007, CVE-2022-20005, CVE-2021-35096, CVE-2021-35073, CVE-2022-20084, CVE-2022-20109, CVE-2021-22600, CVE-2022-20116, CVE-2021-35076, CVE-2021-39662, CVE-2021-39700, CVE-2021-35116, CVE-2022-20115, CVE-2021-35086, CVE-2022-20011, CVE-2022-20010, CVE-2021-35087, CVE-2021-39670, CVE-2021-35090, CVE-2022-20004, CVE-2021-35080, CVE-2021-35094, CVE-2021-35072

Trust: 5.75

Fetched: June 1, 2022, 8:58 a.m., Published: June 3, 2022, midnight
Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: ring model: ring
db: NVD ids: CVE-2022-23039, CVE-2022-23037, CVE-2022-23038, CVE-2022-23041, CVE-2022-23040, CVE-2022-23042, CVE-2022-23036
Related entries in the VARIoT vulnerabilities database: VAR-202205-0359

Trust: 3.0

Fetched: June 1, 2022, 8:58 a.m., Published: -
Vulnerabilities: command injection
Affected productsExternal IDs
db: NVD ids: CVE-2022-27806
Related entries in the VARIoT vulnerabilities database: VAR-202205-0398

Trust: 3.25

Fetched: June 1, 2022, 8:58 a.m., Published: -
Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2022-25946
Related entries in the VARIoT vulnerabilities database: VAR-202203-0823, VAR-202203-1379, VAR-202203-0927, VAR-201710-0955

Trust: 5.25

Fetched: June 1, 2022, 8:58 a.m., Published: June 16, 2022, midnight
Vulnerabilities: memory corruption, input validation vulnerability, code execution
Affected productsExternal IDs
vendor: lenovo model: system
vendor: lenovo model: bios
vendor: lenovo model: updates
vendor: dell model: bios
db: NVD ids: CVE-2022-24421, CVE-2022-24420, CVE-2022-24419, CVE-2017-5721, CVE-2020-12301

Trust: 4.75

Fetched: June 1, 2022, 8:58 a.m., Published: April 19, 2022, 11:39 p.m.
Vulnerabilities: default password, brute force attack
Affected productsExternal IDs
vendor: ring model: ring
Related entries in the VARIoT vulnerabilities database: VAR-202105-1166

Trust: 4.5

Fetched: June 1, 2022, 8:58 a.m., Published: April 29, 2022, 9:26 a.m.
Vulnerabilities: code execution, information disclosure
Affected productsExternal IDs
vendor: serve model: serve
vendor: synology model: diskstation manager
vendor: synology model: diskstation
vendor: netatalk model: netatalk
db: NVD ids: CVE-2021-31439, CVE-2022-23122, CVE-2022-23121, CVE-2022-23124, CVE-2022-0194, CVE-2022-23125, CVE-2022-23123
Related entries in the VARIoT vulnerabilities database: VAR-202203-1898

Trust: 5.5

Fetched: June 1, 2022, 8:58 a.m., Published: April 1, 2022, 5:10 p.m.
Vulnerabilities: code execution, authentication bypass
Affected productsExternal IDs
vendor: trend micro model: security
vendor: trend model: security
vendor: zyxel model: zywall
db: NVD ids: CVE-2022-1040, CVE-2022-26871, CVE-2022-0342
Related entries in the VARIoT vulnerabilities database: VAR-202205-0135

Trust: 3.0

Fetched: June 1, 2022, 8:58 a.m., Published: -
Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2022-26415

Trust: 3.25

Fetched: June 1, 2022, 8:58 a.m., Published: March 31, 2022, 3 p.m.
Vulnerabilities: code execution, denial of service
Affected productsExternal IDs
vendor: motorola model: motorola
vendor: motorola model: android
Related entries in the VARIoT vulnerabilities database: VAR-202205-0175, VAR-202205-0394, VAR-202205-0173, VAR-202205-0174

Trust: 3.75

Fetched: June 1, 2022, 8:58 a.m., Published: -
Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2022-20777, CVE-2022-1388, CVE-2022-20780, CVE-2022-20779

Trust: 3.25

Fetched: June 1, 2022, 8:58 a.m., Published: May 22, 2022, 10:22 a.m.
Vulnerabilities: system crash, denial of service
Affected productsExternal IDs
vendor: apple model: watch
vendor: apple model: mac os