Sign-up

VARIoT news about IoT security

Apple rolls out iOS 15.2.1 and iPadOS 15.2.1 with bug fixes for operating system vulnerabilities - The Economic Times

Trust: 4.0

Fetched: May 13, 2022, 8:11 a.m., Published: Feb. 15, 2001, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: ipad
vendor: apple model: icloud

What is Secure Coding and Why is It important? | VPNOverview

Trust: 3.75

Fetched: May 13, 2022, 8:11 a.m., Published: May 5, 2022, midnight
 Vulnerabilities: cross-site scripting
Affected productsExternal IDs
vendor: trend model: security

November 2021 : FCA Notification - CATALYS™ Precision Laser System : Patch installation due to potential cybersecurity vulnerability concerning the Windows Print Spooler Service. - Medical Device Authority (MDA)

Trust: 3.0

Fetched: May 13, 2022, 8:11 a.m., Published: Nov. 13, 2021, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs

Security Advisory for KCodes NetUSB Vulnerabilities | TP-Link Nederland

Related entries in the VARIoT vulnerabilities database: VAR-202112-2341

Trust: 3.75

Fetched: May 13, 2022, 8:10 a.m., Published: May 6, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: tp-link model: archer c1200
vendor: tp-link model: archer c7
vendor: kcodes model: netusb
db: NVD ids: CVE-2021-45608

Major Linux PolicyKit Security Vulnerability Uncovered: Pwnkit - Slashdot

Trust: 4.75

Fetched: May 13, 2022, 8:10 a.m., Published: May 30, 2022, midnight
 Vulnerabilities: memory corruption
Affected productsExternal IDs
db: NVD ids: CVE-2021-4034

Analyzing an Old Bug and Discovering CVE-2021-30995

Related entries in the VARIoT vulnerabilities database: VAR-202108-1149, VAR-202109-0285, VAR-202108-2078

Trust: 5.75

Fetched: May 13, 2022, 8:10 a.m., Published: Aug. 5, 2022, midnight
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: apple model: macos
db: NVD ids: CVE-2021-30995, CVE-2021-1740, CVE-2021-30855

Top Data Breaches, Malware, Vulnerabilities Reported on January 12, 2022 | Cyware Daily Threat Intelligence | Daily Threat Briefing

Related entries in the VARIoT vulnerabilities database: VAR-202112-2341

Trust: 5.0

Fetched: May 13, 2022, 8:10 a.m., Published: Jan. 12, 2022, midnight
 Vulnerabilities: cross-site scripting
Affected productsExternal IDs
vendor: tp-link model: routers
db: NVD ids: CVE-2021-45608

3 Weeks, 6 Bugs: Experts Analyze, Advise on WordPress Flaws

Trust: 3.5

Fetched: May 13, 2022, 8:10 a.m., Published: May 3, 2022, midnight
 Vulnerabilities: cross-site request forgery, sql injection, injection attack...
Affected productsExternal IDs
db: NVD ids: CVE-2022-21661, CVE-2022-0215, CVE-2022-21664, CVE-2022-21663, CVE-2022-21662, CVE-2022-0218

Security Advisories | Qualys

Related entries in the VARIoT vulnerabilities database: VAR-201712-0124, VAR-201711-1034, VAR-201707-1079, VAR-201712-0125, VAR-201807-0039, VAR-201405-0317, VAR-201711-0414, VAR-201707-1077, VAR-201606-0264, VAR-201807-0040, VAR-201712-0126, VAR-201606-0263, VAR-201205-0405, VAR-201501-0737, VAR-201707-1078, VAR-201711-0411

Trust: 4.5

Fetched: May 13, 2022, 8:10 a.m., Published: May 1, 2022, midnight
 Vulnerabilities: buffer overflow, integer overflow, privilege escalation...
Affected productsExternal IDs
vendor: dell emc model: integrated data protection appliance
vendor: d-link model: router
vendor: d-link model: dir-615
vendor: d-link model: dcs-936l
vendor: acti model: camera
vendor: netgear model: d6000
vendor: netgear model: dgnd3700
vendor: netgear model: dgn2200
vendor: netgear model: wndr4500
vendor: netgear model: d3600
vendor: brickcom model: brickcom
vendor: citrix model: netscaler gateway
vendor: citrix model: gateway
vendor: citrix model: application delivery controller
vendor: citrix model: netscaler application delivery controller
vendor: citrix model: netscaler
vendor: dell model: integrated data protection appliance
vendor: trend micro model: security
vendor: trend model: security
db: NVD ids: CVE-2017-3184, CVE-2017-7851, CVE-2017-9235, CVE-2021-33910, CVE-2017-7406, CVE-2017-3185, CVE-2016-5638, CVE-2014-1849, CVE-2019-19726, CVE-2011-2098, CVE-2017-9236, CVE-2017-14027, CVE-2012-2029, CVE-2017-7404, CVE-2015-5224, CVE-2015-8289, CVE-2016-5649, CVE-2015-3245, CVE-2017-3186, CVE-2015-8288, CVE-2017-9237, CVE-2017-1000408, CVE-2018-14634, CVE-2012-0671, CVE-2015-0235, CVE-2017-1000409, CVE-2012-2031, CVE-2012-2030, CVE-2017-7405, CVE-2017-9238, CVE-2021-4034, CVE-2015-3246, CVE-2017-14021, CVE-2017-1000253

Security information for Hitachi Disk Array Systems(January 26, 2022):Vulnerability Information:Storage Solutions:Hitachi

Related entries in the VARIoT vulnerabilities database: VAR-202201-0580, VAR-202109-1789, VAR-202107-1503, VAR-202201-0640

Trust: 3.0

Fetched: May 13, 2022, 8:10 a.m., Published: Jan. 26, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2022-21868, CVE-2022-21888, CVE-2022-21920, CVE-2022-21894, CVE-2022-21913, CVE-2022-21865, CVE-2022-21918, CVE-2022-21869, CVE-2022-21863, CVE-2022-21877, CVE-2022-21958, CVE-2022-21876, CVE-2022-21912, CVE-2022-21874, CVE-2022-21903, CVE-2022-21895, CVE-2022-21885, CVE-2022-21900, CVE-2022-21864, CVE-2022-21905, CVE-2022-21861, CVE-2022-21858, CVE-2022-21882, CVE-2022-21898, CVE-2022-21922, CVE-2022-21961, CVE-2022-21901, CVE-2022-21893, CVE-2022-21906, CVE-2022-21962, CVE-2022-21850, CVE-2022-21925, CVE-2022-21928, CVE-2022-21833, CVE-2022-21851, CVE-2022-21862, CVE-2022-21836, CVE-2022-21915, CVE-2022-21904, CVE-2022-21890, CVE-2021-22947, CVE-2022-21892, CVE-2022-21839, CVE-2022-21875, CVE-2022-21924, CVE-2022-21860, CVE-2022-21857, CVE-2022-21843, CVE-2022-21847, CVE-2021-36976, CVE-2022-21866, CVE-2022-21907, CVE-2022-21871, CVE-2022-21835, CVE-2022-21867, CVE-2022-21838, CVE-2022-21911, CVE-2022-21879, CVE-2022-21859, CVE-2022-21889, CVE-2022-21959, CVE-2022-21873, CVE-2022-21963, CVE-2022-21960, CVE-2022-21878, CVE-2022-21908, CVE-2022-21896, CVE-2022-21870, CVE-2022-21919, CVE-2022-21848, CVE-2022-21897, CVE-2022-21834, CVE-2022-21883, CVE-2022-21914, CVE-2022-21880, CVE-2022-21916, CVE-2022-21849, CVE-2022-21872, CVE-2022-21881, CVE-2022-21852, CVE-2022-21902

Multiple Vulnerabilities in Cisco Products Could Allow for Arbitrary Code Execution | New York State Office of Information Technology Services

Trust: 3.25

Fetched: May 13, 2022, 8:10 a.m., Published: May 19, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs

Threat Encyclopedia | FortiGuard

Trust: 4.5

Fetched: May 13, 2022, 8:10 a.m., Published: Jan. 4, 2022, midnight
 Vulnerabilities: buffer overflow, use after free
Affected productsExternal IDs
vendor: google model: google chrome
vendor: google model: chrome

Microsoft Security Update January 2022 | Cyber Blog

Trust: 4.0

Fetched: May 13, 2022, 8:10 a.m., Published: Jan. 13, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2022-21907, CVE-2022-21846, CVE-2022-21849

Apple accused of recklessness over iOS security vulnerability | TechRadar

Trust: 5.0

Fetched: May 13, 2022, 8:10 a.m., Published: May 14, 2022, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: apple model: icloud

JNDI-Related Vulnerability Discovered in H2 Database Console | JFrog

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 5.75

Fetched: May 13, 2022, 8:10 a.m., Published: Jan. 6, 2022, noon
 Vulnerabilities: code injection, parameter injection, sql injection...
Affected productsExternal IDs
vendor: trend model: security
db: NVD ids: CVE-2021-44228, CVE-2021-42392

Microsoft Announces First Windows 11 Pluton Security-Based Devices -- Redmondmag.com

Trust: 3.0

Fetched: May 13, 2022, 8:10 a.m., Published: May 11, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: lenovo model: thinkpad

Critical Vulnerability in 3 WordPress Plugins Impacts 84,000 Websites

Trust: 4.5

Fetched: May 13, 2022, 8:10 a.m., Published: May 3, 2022, midnight
 Vulnerabilities: cross-site request forgery, request forgery
Affected productsExternal IDs
db: NVD ids: CVE-2022-0215

Microsoft reveals 'powerdir' macOS vulnerability that allows unauthorized user data access

Related entries in the VARIoT vulnerabilities database: VAR-202108-1285

Trust: 5.0

Fetched: May 13, 2022, 8:10 a.m., Published: May 4, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: icloud
vendor: apple model: macos
db: NVD ids: CVE-2021-30970

Log4Shell Vulnerability Impacting Thousands of Organizations - Motorola Solutions Blog

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 5.5

Fetched: May 13, 2022, 8:10 a.m., Published: Sept. 1, 2001, midnight
 Vulnerabilities: privilege escalation, code execution
Affected productsExternal IDs
vendor: motorola model: motorola
db: NVD ids: CVE-2021-44228

CVE-2021-44757 | ManageEngine

Trust: 3.25

Fetched: May 13, 2022, 8:09 a.m., Published: Jan. 17, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-44757