Sign-up

VARIoT news about IoT security

Critical security vulnerabilities put millions of healthcare devices at risk | TechRadar

Trust: 3.75

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Nov. 10, 2021, 4:15 p.m.
 Vulnerabilities: denial of service, code execution
Affected productsExternal IDs
vendor: siemens model: nucleus

Security Advisories

Related entries in the VARIoT vulnerabilities database: VAR-202110-1690, VAR-202103-0654, VAR-202108-1914, VAR-202106-0639, VAR-202108-1057, VAR-202110-1394, VAR-202108-2172, VAR-202110-1691, VAR-202107-1010, VAR-202103-0655, VAR-202103-0961, VAR-202109-1909, VAR-202110-1571, VAR-202103-0965, VAR-202111-1608, VAR-202111-1607, VAR-202111-1606, VAR-202111-1604, VAR-202111-1613, VAR-202111-1612, VAR-202111-1611, VAR-202111-1609, VAR-202111-1610, VAR-202111-1605, VAR-202111-1616, VAR-202111-1615, VAR-202111-1614, VAR-202111-1714, VAR-202111-1712, VAR-202111-1710, VAR-202104-1963, VAR-202104-1960

Trust: 3.0

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Dec. 14, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-42013, CVE-2021-34481, CVE-2021-22986, CVE-2021-24094, CVE-2021-21973, CVE-2021-36942, CVE-2019-18935, CVE-2021-1675, CVE-2021-30860, CVE-2021-34783, CVE-2021-21985, CVE-2021-30858, CVE-2021-24086, CVE-2021-35211, CVE-2021-41773, CVE-2021-36934, CVE-2021-34527, CVE-2021-22987, cve-2021-30858, CVE-2021-22992, CVE-2021-24074, CVE-2021-21974, CVE-2021-21986, CVE-2021-40444, cve-2021-35211, CVE-2021-2021, CVE-2021-41524, CVE-2021-22991, CVE-2021-21972
db: ICS CERT ids: ICSMA-21-322-01, ICSA-21-313-03, ICSMA-21-322-02, ICSA-21-119-04
db: USCERT ids: AA21-055A, AA21-048A, AA21-062A, AA21-110A
db: US CERT ids: ICSA-21-313-03, ICSA-21-119-04
db: VMWARE ids: VMSA-2021-0020.1, VMSA-2021-0010, VMSA-2021-0020

Full Stack Risk Based Vulnerability Management Platform | Outpost 24

Trust: 3.25

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Nov. 23, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: serve model: serve

Find out how long your tech will last with our free security tools - Which? News

Trust: 3.5

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Nov. 16, 2021, 10:26 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: essential model: phone
vendor: samsung model: galaxy
vendor: samsung model: samsung
vendor: samsung model: mobile
vendor: samsung model: mobile phones
vendor: netgear model: router
vendor: lenovo model: desktop
vendor: lenovo model: updates
vendor: tp-link model: routers
vendor: google model: home

vulnerability-scan from deviceinsight - Github Help

Trust: 3.25

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Jan. 2, 2022, midnight
 Vulnerabilities: configuration vulnerability
Affected productsExternal IDs

How to hack Hikvision camera (the easy way) - Learn CCTV.com

Trust: 4.25

Fetched: Nov. 24, 2021, 2:35 p.m., Published: -
 Vulnerabilities: default password
Affected productsExternal IDs
vendor: hikvision model: hikvision
vendor: hikvision model: hikvision camera
vendor: hikvision model: camera
vendor: hikvision model: ip cameras

Five New Vulnerabilities Disclosed in Patient Monitoring Systems

Related entries in the VARIoT vulnerabilities database: VAR-202111-1710, VAR-202111-1712, VAR-202111-1714

Trust: 3.75

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Nov. 23, 2021, 1 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2021-32993, CVE-2021-43550, CVE-2021-43552, CVE-2021-33017, CVE-2021-43548

11 Types of Malware + Examples That You Should Know

Trust: 3.75

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Dec. 7, 2021, 7:28 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: serve model: serve
db: USCERT ids: TA18-201A

Critical encryption vulnerability found in secure communications platform Matrix | The Daily Swig

Trust: 3.25

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Sept. 14, 2021, 2:03 p.m.
 Vulnerabilities: encryption vulnerability
Affected productsExternal IDs
db: NVD ids: CVE-2021-40823, CVE-2021-40824

Philips Working on Patches for Vulnerabilities Found in Medical Products | SecurityWeek.Com

Related entries in the VARIoT vulnerabilities database: VAR-202111-1712, VAR-202111-1710, VAR-202111-1714

Trust: 4.5

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Jan. 14, 2022, midnight
 Vulnerabilities: authentication bypass, denial of service
Affected productsExternal IDs
vendor: philips model: intellibridge ec40
db: NVD ids: CVE-2021-32993, CVE-2021-43552, CVE-2021-33017, CVE-2021-43550, CVE-2021-43548

Vulnerability in Cisco Security Devices Is Dangerous For Business Processes in Large Companies

Related entries in the VARIoT vulnerabilities database: VAR-202007-1057, VAR-202005-0696, VAR-202005-0685, VAR-202110-1796

Trust: 5.5

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Nov. 24, 2021, 8:57 a.m.
 Vulnerabilities: denial of service, buffer overflow
Affected productsExternal IDs
vendor: cisco model: adaptive security appliance
vendor: cisco model: firepower
vendor: cisco model: device manager
vendor: cisco model: firepower threat defense
db: NVD ids: CVE-2020-3452, CVE-2020-3259, CVE-2020-3187, CVE-2021-34704

Five New Vulnerabilities Disclosed in Patient Monitoring Systems - Security Boulevard

Related entries in the VARIoT vulnerabilities database: VAR-202111-1710, VAR-202111-1712, VAR-202111-1714

Trust: 3.75

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Nov. 23, 2021, 1 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2021-32993, CVE-2021-43550, CVE-2021-43552, CVE-2021-33017, CVE-2021-43548

A new vulnerability in Windows makes it easy to get admin rights

Related entries in the VARIoT vulnerabilities database: VAR-202111-0697

Trust: 4.0

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Nov. 24, 2021, 10:31 a.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2021-41379

Researcher Releases Updated 0-Day Vulnerability for Windows Systems after Patch Tuesday

Related entries in the VARIoT vulnerabilities database: VAR-202111-0697

Trust: 3.0

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Dec. 15, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-41379

Researcher Releases Updated 0-Day Vulnerability for Windows Systems after Patch Tuesday

Related entries in the VARIoT vulnerabilities database: VAR-202111-0697

Trust: 3.0

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Dec. 15, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-41379

Philips IntelliBridge Hub Vulnerabilities - NHS Digital

Trust: 3.5

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Dec. 14, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-33017, CVE-2021-32993

GovCERT.HK - Security Alert (A21-10-19): Multiple Vulnerabilities in Apple iOS and iPadOS

Related entries in the VARIoT vulnerabilities database: VAR-202108-2067, VAR-202108-2065, VAR-202108-2055, VAR-202108-2086, VAR-202108-2085, VAR-202108-2051, VAR-202108-2161, VAR-202108-2048, VAR-202108-2045, VAR-202108-2080, VAR-202108-2081, VAR-202108-2110, VAR-202108-2039, VAR-202108-2049, VAR-202108-2066

Trust: 5.75

Fetched: Nov. 24, 2021, 2:35 p.m., Published: -
 Vulnerabilities: code execution, privilege escalation, restriction bypass...
Affected productsExternal IDs
vendor: apple model: ipod touch
vendor: apple model: ipad
vendor: apple model: iphone
db: NVD ids: CVE-2021-30875, CVE-2021-30886, CVE-2021-30894, CVE-2021-30907, CVE-2021-30911, CVE-2021-30900, CVE-2021-30905, CVE-2021-30903, CVE-2021-30909, CVE-2021-30919, CVE-2021-30914, CVE-2021-30917, CVE-2021-30890, CVE-2021-30902, CVE-2021-30881

Vulnerability in Cisco Security Devices Is Dangerous For Business Processes in Large Companies : @VMblog

Related entries in the VARIoT vulnerabilities database: VAR-202110-1796, VAR-202005-0685, VAR-202005-0696, VAR-202007-1057

Trust: 5.75

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Jan. 3, 2022, midnight
 Vulnerabilities: buffer overflow, denial of service
Affected productsExternal IDs
vendor: cisco model: firepower
vendor: cisco model: firepower threat defense
vendor: cisco model: device manager
vendor: cisco model: adaptive security appliance
db: NVD ids: CVE-2021-34704, CVE-2020-3187, CVE-2020-3259, CVE-2020-3452

Disclosing CVE-2021-40823 and CVE-2021-40824: E2EE vulnerability in multiple Matrix clients | Matrix.org

Trust: 3.0

Fetched: Nov. 23, 2021, 9:28 a.m., Published: Sept. 13, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-40824, CVE-2021-40823

CVE-2021-40829 : Connections initialized by the AWS IoT Device SDK v2 for Java (versions prior to 1.4.2), Python (versions prior to 1.6.1

Trust: 3.75

Fetched: Nov. 23, 2021, 9:28 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: node.js model: node.js
db: NVD ids: CVE-2009-1234, CVE-2021-40829