VARIoT news about IoT security

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566, VAR-202112-0562, VAR-202112-2011, VAR-202112-1782

Trust: 4.0

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Dec. 22, 2021, 9:38 p.m.
Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228, CVE-2021-45046, CVE-2021-44832, CVE-2021-4104, CVE-2021-45105

Trust: 5.5

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 15, 2022, midnight
Vulnerabilities: command injection, path traversal, code execution
Affected productsExternal IDs
vendor: nuuo model: network video recorder
vendor: nuuo model: nvrmini2
db: NVD ids: CVE-2011-5325

Trust: 3.25

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 15, 2022, midnight
Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2022-23178

Trust: 4.5

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Oct. 30, 2017, 3:36 p.m.
Vulnerabilities: cross-site scripting, directory traversal, denial of service...
Affected productsExternal IDs
vendor: wireshark model: wireshark

Trust: 3.0

Fetched: Jan. 18, 2022, 11:13 a.m., Published: Dec. 1, 2021, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: serve model: serve
Related entries in the VARIoT vulnerabilities database: VAR-202112-0566, VAR-202112-0562

Trust: 4.75

Fetched: Jan. 18, 2022, 11:12 a.m., Published: Jan. 13, 2022, midnight
Vulnerabilities: denial of service, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228, CVE-2021-45046
Related entries in the VARIoT vulnerabilities database: VAR-202112-2011, VAR-202112-1782, VAR-202112-0566, VAR-202112-0562

Trust: 5.5

Fetched: Jan. 18, 2022, 11:11 a.m., Published: Sept. 29, 2021, midnight
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: serve model: serve
vendor: dell model: emc vxrail
vendor: dell emc model: emc vxrail
db: NVD ids: CVE-2021-44832, CVE-2021-45105, CVE-2021-44228, CVE-2021-45046

Trust: 3.75

Fetched: Jan. 18, 2022, 11:10 a.m., Published: Jan. 18, 2022, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: home
vendor: google model: google home
vendor: google model: wifi

Trust: 3.0

Fetched: Jan. 18, 2022, 11:10 a.m., Published: Nov. 24, 2021, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: check point model: check point
Related entries in the VARIoT vulnerabilities database: VAR-201910-0546, VAR-201803-2171, VAR-201808-0384, VAR-202111-0616, VAR-201910-0547

Trust: 5.5

Fetched: Jan. 18, 2022, 11:10 a.m., Published: Dec. 9, 2021, midnight
Vulnerabilities: buffer overflow, directory traversal, code execution
Affected productsExternal IDs
vendor: tp-link model: routers
vendor: mikrotik model: mikrotik routers
vendor: mikrotik model: mikrotik
vendor: mikrotik model: routers
vendor: mikrotik model: winbox
vendor: mikrotik model: routeros
vendor: hikvision model: hikvision
db: NVD ids: CVE-2019-3977, CVE-2018-7445, CVE-2018-14847, CVE-2021-36260, CVE-2021-41653, CVE-2019-3978
Related entries in the VARIoT vulnerabilities database: VAR-202112-0566, VAR-202112-2011

Trust: 4.0

Fetched: Jan. 18, 2022, 11:09 a.m., Published: Jan. 18, 2022, 10:09 a.m.
Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228, CVE-2021-44832

Trust: 3.75

Fetched: Jan. 18, 2022, 11:09 a.m., Published: Jan. 18, 2022, 11:06 a.m.
Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: google model: home

Trust: 3.0

Fetched: Jan. 18, 2022, 11:09 a.m., Published: Jan. 18, 2022, 11:09 a.m.
Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: icloud

Trust: 4.75

Fetched: Jan. 18, 2022, 11:08 a.m., Published: Jan. 18, 2022, 11:08 a.m.
Vulnerabilities: code execution, request forgery
Affected productsExternal IDs
db: NVD ids: CVE-2021-34473, CVE-2021-34523, CVE-2021-31207

Trust: 3.0

Fetched: Jan. 18, 2022, 11:07 a.m., Published: Jan. 16, 2022, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: moxa model: nport 5100a series
vendor: moxa model: nport 5100a series firmware
vendor: moxa model: moxa
vendor: moxa model: nport
vendor: moxa model: nport 5100a

Trust: 4.5

Fetched: Jan. 18, 2022, 10:43 a.m., Published: Jan. 6, 2022, midnight
Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: icloud
vendor: apple model: ipad

Trust: 5.0

Fetched: Jan. 18, 2022, 10:43 a.m., Published: Jan. 13, 2022, 3:06 p.m.
Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: icloud
vendor: apple model: iphone
Related entries in the VARIoT vulnerabilities database: VAR-201705-3536

Trust: 4.5

Fetched: Jan. 18, 2022, 10:39 a.m., Published: Jan. 18, 2017, midnight
Vulnerabilities: denial of service, default credentials
Affected productsExternal IDs
vendor: qemu model: qemu
vendor: ribbon model: edgemarc
vendor: edgewater model: edgemarc
vendor: ribbon communications model: edgemarc
db: NVD ids: CVE-2017-6079
Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 4.75

Fetched: Jan. 18, 2022, 10:39 a.m., Published: Jan. 6, 2022, midnight
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: cisco model: cisco webex meetings server
vendor: cisco model: cisco webex
vendor: cisco model: webex
vendor: cisco model: sd-wan
vendor: cisco model: meetings server
vendor: cisco model: webex meetings
vendor: cisco model: cisco webex meetings
vendor: cisco model: identity services engine
vendor: cisco model: firepower
vendor: cisco model: cisco sd-wan
vendor: cisco model: data center network manager
vendor: cisco model: firepower threat defense
vendor: cisco model: webex meetings server
vendor: cisco model: sd-wan vmanage
vendor: cisco model: series
vendor: tippingpoint model: tippingpoint
vendor: couchbase model: server
vendor: citrix model: gateway
vendor: trend micro model: security
vendor: symantec model: web security
vendor: symantec model: symantec endpoint protection
vendor: symantec model: endpoint protection
vendor: ubiquiti model: unifi
vendor: cpanel model: cpanel
vendor: trendmicro model: security
vendor: broadcom model: api gateway
vendor: broadcom model: broadcom
vendor: broadcom model: linux
vendor: sophos model: cloud optix
vendor: sophos model: mobile
vendor: sophos model: endpoint protection
vendor: trend model: security
vendor: sonicwall model: email security
vendor: sonicwall model: analyzer
vendor: dovecot model: dovecot
db: NVD ids: CVE-2021-44228
Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 4.75

Fetched: Jan. 18, 2022, 10:39 a.m., Published: -
Vulnerabilities: sql injection
Affected productsExternal IDs
vendor: google model: android
vendor: serve model: serve
db: NVD ids: CVE-2021-44228