Sign-up

VARIoT news about IoT security

Aviso de Segurança - Vulnerabilidade de autorização imprópria em alguns produtos da Huawei

Related entries in the VARIoT vulnerabilities database: VAR-202109-1642

Trust: 4.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 8, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: huawei model: huawei
db: NVD ids: CVE-2021-37101

ProxyShell vulnerabilities in Microsoft Exchange: What to do - Sophos News

Trust: 4.25

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 23, 2021, 6 p.m.
 Vulnerabilities: privilege elevation, code execution
Affected productsExternal IDs
vendor: sophos model: mobile
vendor: sophos model: endpoint protection
db: NVD ids: CVE-2021-34523, CVE-2021-31207, CVE-2021-34473

Microsoft Warns of New Security Flaw Affecting Surface Pro 3 Devices

Related entries in the VARIoT vulnerabilities database: VAR-202110-1321

Trust: 4.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 20, 2021, 7:20 a.m.
 Vulnerabilities: security bypass
Affected productsExternal IDs
db: NVD ids: CVE-2021-42299

Microsoft issues advisory for Surface Pro 3 TPM bypass vulnerability

Related entries in the VARIoT vulnerabilities database: VAR-202110-1321

Trust: 4.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 3, 2022, midnight
 Vulnerabilities: security feature bypass, feature bypass
Affected productsExternal IDs
db: NVD ids: CVE-2021-42299

Vulnerabilities Found in QNAP Were Fixed

Trust: 6.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 1, 2021, 12:04 p.m.
 Vulnerabilities: cross-site scripting, command injection
Affected productsExternal IDs
vendor: qnap model: photo station
db: NVD ids: CVE-2021-34356, CVE-2021-34352, CVE-2021-34354, CVE-2021-34355

Update Your Apple Devices Right Now to Patch This Serious iMessage Bug

Related entries in the VARIoT vulnerabilities database: VAR-202112-0004

Trust: 3.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 14, 2021, noon
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: watch
vendor: apple model: macos
vendor: apple model: iphone
vendor: apple model: ipad
db: NVD ids: CVE-2021-20860

Android Multiple Vulnerabilities - DIGITPOL

Trust: 3.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Nov. 3, 2021, midnight
 Vulnerabilities: denial of service, code execution, information disclosure
Affected productsExternal IDs

Critical macOS Bug Could Allow Threat Actors Install Undetectable Malware In Apple Devices

Related entries in the VARIoT vulnerabilities database: VAR-202108-2056

Trust: 3.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Nov. 2, 2021, 3:39 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: macos
vendor: apple model: macbook air
vendor: apple model: macbook
vendor: apple model: ipad
db: NVD ids: CVE-2021-30892

Critical Vulnerability Affects Millions of IoT Devices - Synergetics India

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 1, 2021, 7:54 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-28372

Update Now: Apple Patches iOS, Mac Attack That Uses Malicious PDFs to Hack Devices

Related entries in the VARIoT vulnerabilities database: VAR-202108-1057, VAR-202108-2172

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 13, 2021, 8:49 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: webkit
vendor: apple model: iphone
vendor: apple model: macos
vendor: apple model: safari
vendor: apple model: watchos
vendor: apple model: tvos
db: NVD ids: CVE-2021-30860, CVE-2021-30858

Realtek AP-Router SDK vulnerabilities could impact millions of routers and IoT devices - CNX Software

Trust: 4.25

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 18, 2021, 9:21 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: realtek model: realtek sdk

Microsoft fixes critical PrintNightmare and Office document vulnerabilities in Windows 10 | Windows Central

Trust: 4.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 15, 2021, 12:21 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-36958, CVE-2021-40444

Apps of 16 popular smart home devices vulnerable to cyberattack - The Hindu

Trust: 3.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 28, 2021, 7:03 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: home
vendor: google model: google home
vendor: google model: wifi

Microsoft finally fixes PrintNightmare vulnerability with KB5005031 and KB5005033 updates

Related entries in the VARIoT vulnerabilities database: VAR-202107-1010

Trust: 3.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 11, 2021, 7:41 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-34481, CVE-2021-34527

Google warns Android users of zero-day vulnerability being actively attacked

Trust: 3.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Nov. 25, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: pixel
vendor: google model: android
db: NVD ids: CVE-2021-1048

Microsoft and Google have had a vulnerable 2021, Atlas VPN declares | Windows Central

Trust: 3.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 20, 2021, 6:54 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: chrome

Apple just fixed zero-day iPhone flaw with iOS 15.0.2 - update now | Tom's Guide

Related entries in the VARIoT vulnerabilities database: VAR-202108-2057

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 12, 2021, 8:46 p.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: apple model: ipad air
vendor: apple model: iphone
vendor: apple model: ipod touch
vendor: apple model: ipad
db: NVD ids: CVE-2021-30883

Apple Patches New Zero-Day iOS Vulnerability Possibly Under Exploitation | PCMag

Related entries in the VARIoT vulnerabilities database: VAR-202108-2057

Trust: 5.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 11, 2022, midnight
 Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: apple model: watch
vendor: apple model: ipad air
vendor: apple model: iphone
vendor: apple model: ipad
db: NVD ids: CVE-2021-30883

Patch now! Microsoft fixes 71 Windows vulnerabilities in October Patch Tuesday | Malwarebytes Labs

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 13, 2021, 3:41 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-38672, CVE-2021-40461, CVE-2021-40469, CVE-2021-40449, CVE-2021-36970, CVE-2021-26427, CVE-2021-40486

Which countries have the highest rate of phone hacking? - Zatltd

Related entries in the VARIoT vulnerabilities database: VAR-201605-0441, VAR-201502-0126

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 8, 2021, 3:24 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: sony model: playstation
db: NVD ids: CVE-2016-1799, CVE-2017-0126, CVE-2015-0596