Sign-up

VARIoT news about IoT security

Sensors | Free Full-Text | Towards a Safer Internet of Things-A Survey of IoT Vulnerability Data Sources

Related entries in the VARIoT vulnerabilities database: VAR-201202-0164, VAR-201202-0163, VAR-201202-0162

Trust: 4.25

Fetched: June 2, 2024, 9:17 a.m., Published: Jan. 2, 2020, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: essential model: phone
vendor: codesys model: codesys
vendor: codesys model: control
vendor: paloaltonetworks model: pan-os
vendor: trend model: security
vendor: siemens model: ip camera
vendor: cisco model: router
vendor: cisco model: routers
vendor: trend micro model: security
vendor: google model: home
vendor: google model: android
db: NVD ids: CVE-2011-4877, CVE-2011-4876, CVE-2010-1677, CVE-2011-4875

Cybersecurity Terms: A to Z Glossary | Coursera

Trust: 4.5

Fetched: June 2, 2024, 9:15 a.m., Published: May 31, 2024, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: essential model: phone
vendor: google model: wi-fi router

Millions of IoT Devices Vulnerable After Researchers Uncover Flaws in ThroughTek Kalay Platform

Trust: 6.75

Fetched: June 2, 2024, 9:08 a.m., Published: May 15, 2024, 2:47 p.m.
 Vulnerabilities: buffer overflow, code execution, command execution
Affected productsExternal IDs
vendor: roku model: roku
db: NVD ids: CVE-2023-6322, CVE-2023-6321, CVE-2023-6323, CVE-2023-6324

CVE-2023-37312 - D-Link DAP-2622 DDP Set Device Info Device Name Stack-based Buffer Overflow Remote Code Execution Vulnerability - SecAlerts

Trust: 3.75

Fetched: May 31, 2024, 10:05 a.m., Published: May 31, 2622, midnight
 Vulnerabilities: code execution, buffer overflow
Affected productsExternal IDs
db: NVD ids: CVE-2023-37312

Alert! TP-Link Router Vulnerability Exposes Your Network: Patch Now

Trust: 3.0

Fetched: May 31, 2024, 10:04 a.m., Published: May 30, 2024, 8:43 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: tp-link model: routers

CISA adds Check Point Quantum Security Gateways and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog

Trust: 5.75

Fetched: May 31, 2024, 10:03 a.m., Published: May 30, 2024, 8:08 p.m.
 Vulnerabilities: privilege escalation, information disclosure
Affected productsExternal IDs
vendor: check point model: check point
db: NVD ids: CVE-2024-1086, CVE-2024-24919

CyberPower PowerPanel Enterprise Power Device Network Utility Multiple Vulnerabilities - Research Advisory | TenableĀ®

Trust: 3.0

Fetched: May 31, 2024, 10:03 a.m., Published: May 9, 2024, 2:39 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2024-32736, CVE-2024-32739, CVE-2024-32735, CVE-2024-32738, CVE-2024-32737

Zyxel security advisory for buffer overflow vulnerabilities in some 5G NR/4G LTE CPE, DSL/Ethernet CPE, fiber ONT, and Wi-Fi extender devices | S. America | Zyxel Service Providers

Trust: 3.5

Fetched: May 31, 2024, 10:02 a.m., Published: May 7, 2024, midnight
 Vulnerabilities: buffer overflow, denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2023-37929, CVE-2024-0816

CVE-2023-3942 Multiple SQLi in ZkTeco-based OEM devices - vulnerability database | Vulners.com

Trust: 5.0

Fetched: May 31, 2024, 10:01 a.m., Published: May 21, 2024, 12:23 p.m.
 Vulnerabilities: sql injection
Affected productsExternal IDs
db: NVD ids: CVE-2023-3942

Samsung monthly updates: May 2024 security patch for Galaxy phones revealed - SamMobile

Trust: 3.75

Fetched: May 31, 2024, 10:01 a.m., Published: May 7, 2024, 5:33 a.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: google model: android
vendor: samsung model: galaxy

CVE-2024-24919: Check Point Security Gateway Information Dis... - vulnerability database | Vulners.com

Trust: 4.5

Fetched: May 31, 2024, 9:58 a.m., Published: May 30, 2024, 3:45 p.m.
 Vulnerabilities: traversal attack, path traversal, information disclosure
Affected productsExternal IDs
vendor: check point model: check point
vendor: check point model: security gateway
vendor: check point model: quantum security gateway
vendor: check point model: check point vpn
db: NVD ids: CVE-2024-24919

Four Critical Vulnerabilities Expose HPE Aruba Devices to RCE Attacks

Trust: 5.5

Fetched: May 31, 2024, 9:53 a.m., Published: May 3, 2024, 4:50 a.m.
 Vulnerabilities: code execution, buffer overflow
Affected productsExternal IDs
vendor: aruba model: arubaos
vendor: aruba networks model: arubaos
db: NVD ids: CVE-2024-33511, CVE-2024-26304, CVE-2024-26305, CVE-2024-33512

Configuring updates of anti-malware databases on Android devices

Trust: 3.0

Fetched: May 31, 2024, 9:53 a.m., Published: April 30, 2019, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Critical security flaw in TP-Link routers: Steps to safeguard your device - India TV

Trust: 3.75

Fetched: May 31, 2024, 9:52 a.m., Published: May 30, 2024, 12:55 p.m.
 Vulnerabilities: command injection, default credentials
Affected productsExternal IDs
vendor: tp-link model: routers

Google patches its fifth zero-day vulnerability of the year in Chrome | Ars Technica

Trust: 5.0

Fetched: May 31, 2024, 9:51 a.m., Published: May 10, 2024, 5:02 p.m.
 Vulnerabilities: use after free
Affected productsExternal IDs
vendor: google model: chrome
db: NVD ids: CVE-2024-4671

Vulnerability discovered by Microsoft affects many Android applications - Droid News

Trust: 3.0

Fetched: May 31, 2024, 9:51 a.m., Published: May 6, 2024, 9:10 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Most Common WordPress Vulnerabilities (And How To Fix Them)

Trust: 3.5

Fetched: May 31, 2024, 9:46 a.m., Published: March 7, 2024, 2:20 p.m.
 Vulnerabilities: sql injection, cross-site scripting, brute force attack...
Affected productsExternal IDs

How To Secure the Linux Kernel

Related entries in the VARIoT vulnerabilities database: VAR-201801-1708

Trust: 3.5

Fetched: May 31, 2024, 9:44 a.m., Published: Aug. 16, 2024, midnight
 Vulnerabilities: information exposure, privilege escalation, system crash
Affected productsExternal IDs
db: NVD ids: CVE-2016-10229, CVE-2014-2523, CVE-2016-10150, CVE-2017-18017, CVE-2015-8812

How to Perform Security Audits on IoT Devices | RunTime

Trust: 4.75

Fetched: May 31, 2024, 9:44 a.m., Published: May 27, 2024, 2:23 a.m.
 Vulnerabilities: default credentials
Affected productsExternal IDs
vendor: wireshark model: wireshark

Govt raises alarm over critical vulnerability in TP-Link routers: How to protect your device | Mint

Trust: 3.75

Fetched: May 31, 2024, 9:43 a.m., Published: May 29, 2024, 1:23 p.m.
 Vulnerabilities: command injection, default credentials
Affected productsExternal IDs
vendor: tp-link model: routers