Sign-up

VARIoT news about IoT security

Apple’s iOS and macOS Have a Nasty Vulnerability, so Update Now - 'Mashable SEA' News | SendStory Singapore

Trust: 3.0

Fetched: Feb. 15, 2023, 9:29 a.m., Published: Feb. 8, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: ipad air
vendor: apple model: macos
vendor: apple model: ipad

QNAP Patches Critical Vulnerability - CYREBRO

Trust: 5.0

Fetched: Feb. 15, 2023, 9:29 a.m., Published: -
 Vulnerabilities: code injection, sql injection
Affected productsExternal IDs
db: NVD ids: CVE-2022-27596

Rewterz Threat Advisory - ICS: Delta Electronics InfraSuite Device Master Vulnerability | Rewterz

Trust: 3.0

Fetched: Feb. 15, 2023, 9:28 a.m., Published: Jan. 30, 2023, 8:01 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2022-41657

Apple users should install latest security updates to fix vulnerability: SingCert

Trust: 3.0

Fetched: Feb. 15, 2023, 9:28 a.m., Published: Feb. 14, 2023, 12:45 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: webkit
vendor: apple model: ipad air
vendor: apple model: macos
vendor: apple model: ipad
vendor: apple model: safari

Apple’s iOS and macOS Have a Nasty Vulnerability, so Update Now - 'Mashable SEA' News Summary (Singapore) | BEAMSTART

Trust: 3.0

Fetched: Feb. 15, 2023, 9:26 a.m., Published: Feb. 8, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: ipad air
vendor: apple model: macos
vendor: apple model: ipad

macOS 13.2.1, iOS 16.3.1: update your devices, Apple has fixed a major vulnerability - Archyde

Related entries in the VARIoT vulnerabilities database: VAR-202302-1097

Trust: 4.0

Fetched: Feb. 15, 2023, 9:26 a.m., Published: Feb. 13, 2023, 8:47 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: watchos
vendor: apple model: webkit
vendor: apple model: macos
vendor: apple model: ipad
vendor: apple model: safari
vendor: apple model: tvos
db: NVD ids: CVE-2023-23529

Critical Infrastructure At Risk From New Vulnerabilities Found in Wireless IIoT Devices

Related entries in the VARIoT vulnerabilities database: VAR-202301-0630, VAR-202301-0629

Trust: 4.75

Fetched: Feb. 15, 2023, 9:23 a.m., Published: Feb. 3, 2023, midnight
 Vulnerabilities: command injection, information disclosure, code execution...
Affected productsExternal IDs
vendor: siemens model: automation license manager
db: NVD ids: CVE-2022-41607, CVE-2022-46650, CVE-2022-43513, CVE-2022-43514, CVE-2022-40981, CVE-2022-46649, CVE-2022-3703

Apple Patches Exploited Zero-Day WebKit Vulnerability - Lansweeper

Trust: 3.5

Fetched: Feb. 15, 2023, 9:22 a.m., Published: Feb. 14, 2023, 2:43 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: webkit

Critical Infrastructure at Risk from New Vulnerabilities Found in Industrial IoT Devices - UMBRA | Nation State Threat Intelligence, Pre-Crime, Cyberdefense, Encrypted Comms, Intelligence Platorms, MIlitary AI, Predictive Analytics

Trust: 3.25

Fetched: Feb. 15, 2023, 9:21 a.m., Published: Feb. 14, 2023, midnight
 Vulnerabilities: code execution, denial of service
Affected productsExternal IDs
vendor: cisco model: ip phones
vendor: cisco model: access points

Multiple Vulnerabilities in Apple Products Could Allow for Arbitrary Code Execution

Trust: 3.5

Fetched: Feb. 15, 2023, 9:21 a.m., Published: Feb. 8, 2023, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs

New Wave of Ransomware Attacks Exploiting VMware Bug to Target ESXi Servers

Trust: 4.75

Fetched: Feb. 15, 2023, 9:20 a.m., Published: Feb. 4, 2023, 5:30 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-21974

Apple users should install latest security updates to fix vulnerability, Latest Tech News - The New Paper

Trust: 3.0

Fetched: Feb. 15, 2023, 9:20 a.m., Published: Feb. 14, 2023, 12:53 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: macos
vendor: apple model: iphone
vendor: apple model: ipad
vendor: apple model: safari
vendor: apple model: webkit
vendor: apple model: ipad air

Apple patches zero-day flaw affecting iPhones, iPads, and Macs

Related entries in the VARIoT vulnerabilities database: VAR-202302-1097

Trust: 6.0

Fetched: Feb. 15, 2023, 9:19 a.m., Published: -
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: webkit
vendor: apple model: ipad air
vendor: apple model: macos
vendor: apple model: ipad
vendor: apple model: safari
db: NVD ids: CVE-2023-23529

“Understanding IoT Device Vulnerabilities and Hacking Threats” - Qodeit

Trust: 3.0

Fetched: Feb. 15, 2023, 9:18 a.m., Published: Feb. 9, 2023, 8:03 a.m.
 Vulnerabilities: -
Affected productsExternal IDs

Apple users should install latest security updates to fix vulnerability: SingCert | The Straits Times

Trust: 3.0

Fetched: Feb. 15, 2023, 9:16 a.m., Published: Feb. 14, 2023, 12:19 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: webkit
vendor: apple model: ipad air
vendor: apple model: macos
vendor: apple model: ipad
vendor: apple model: safari

CSW's Threat Intelligence - January 30, 2022 - February 3, 2022

Related entries in the VARIoT vulnerabilities database: VAR-202212-1751, VAR-202302-0029

Trust: 5.5

Fetched: Feb. 15, 2023, 9:15 a.m., Published: Jan. 30, 2023, midnight
 Vulnerabilities: access control flaw, code execution, sql injection...
Affected productsExternal IDs
vendor: apple model: watch
vendor: apple model: webkit
db: NVD ids: CVE-2022-31710, CVE-2022-21587, CVE-2022-47966, CVE-2023-22952, CVE-2022-0543, CVE-2022-42856, CVE-2022-31704, CVE-2022-34689, CVE-2017-11357, CVE-2022-38023, CVE-2022-31711, CVE-2023-24055, CVE-2022-27596, CVE-2021-4034, CVE-2022-31706, CVE-2023-22374, CVE-2022-27925, CVE-2022-37042

Apple issues emergency security updates for all of its platforms - update your iPhone, iPad and Mac Now | Tom's Guide

Related entries in the VARIoT vulnerabilities database: VAR-202302-1097

Trust: 3.75

Fetched: Feb. 15, 2023, 9:15 a.m., Published: Feb. 14, 2023, 3:07 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: imac
vendor: apple model: macbook
vendor: apple model: macos
vendor: apple model: iphone
vendor: apple model: ipad
vendor: apple model: webkit
vendor: apple model: ipad air
db: NVD ids: CVE-2023-23529

Apple patches two dangerous zero-day vulnerabilities - Techzine Europe

Related entries in the VARIoT vulnerabilities database: VAR-202302-1097, VAR-202302-1169

Trust: 3.75

Fetched: Feb. 15, 2023, 9:15 a.m., Published: Feb. 14, 2023, 9:38 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: webkit
vendor: apple model: ipad air
vendor: apple model: ipad
vendor: apple model: macos
vendor: apple model: safari
db: NVD ids: CVE-2023-23529, CVE-2023-23514

Apple iOS Brings Vulnerabilities: Have you updated your iPhone? - Texaport

Related entries in the VARIoT vulnerabilities database: VAR-202212-1751

Trust: 3.5

Fetched: Feb. 15, 2023, 9:14 a.m., Published: Dec. 14, 2022, 2:08 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: webkit
db: NVD ids: CVE-2022-42856

Networking Tech Vulnerability Could Be Used to Hack Spacecraft: Researchers - SecurityWeek

Trust: 3.75

Fetched: Feb. 15, 2023, 9:13 a.m., Published: Nov. 16, 2022, midnight
 Vulnerabilities: control bypass
Affected productsExternal IDs
vendor: cisco model: routers
vendor: realtek model: realtek sdk