Sign-up

VARIoT news about IoT security

Log4j attacks: All you need to know about new-found software flaw | Special-reports - Gulf News

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 3.5

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 18, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: macos
vendor: checkpoint model: check point
vendor: cisco model: technical support
vendor: check point model: check point
db: NVD ids: CVE-2021-44228

How SASE protects from Log4j - Check Point Software

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 5.0

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Dec. 23, 2021, 11 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: check point model: check point
db: NVD ids: CVE-2021-44228

TLP-WHITE: Mitigating Log4Shell and Other Log4j-Related Vulnerabilities | AHA

Related entries in the VARIoT vulnerabilities database: VAR-202112-1782, VAR-202112-0566, VAR-202112-0562

Trust: 3.0

Fetched: Jan. 18, 2022, 11:14 a.m., Published: March 18, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-45105, CVE-2021-44228, CVE-2021-45046

Micron Statement on Potential Industry Vulnerability in Optional ATA Interface Command

Trust: 3.0

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 1, 2022, midnight
 Vulnerabilities: authorization issue
Affected productsExternal IDs

Top Five Vulnerabilities Attackers Use Against Browsers | IT Business Edge

Trust: 3.5

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 12, 2022, 7:06 p.m.
 Vulnerabilities: sql injection, brute force attack, cross-site scripting...
Affected productsExternal IDs
vendor: serve model: serve

Log4j vulnerability explained and how to respond - OpenText Blogs

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566, VAR-202112-0562, VAR-202112-2011, VAR-202112-1782

Trust: 4.0

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Dec. 22, 2021, 9:38 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228, CVE-2021-45046, CVE-2021-44832, CVE-2021-4104, CVE-2021-45105

Researcher discloses alleged zero-day vulnerabilities in NUUO NVRmini2 recording device - Hard News Hard Hitting News Source Global Political News

Trust: 5.5

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 15, 2022, midnight
 Vulnerabilities: command injection, path traversal, code execution
Affected productsExternal IDs
vendor: nuuo model: network video recorder
vendor: nuuo model: nvrmini2
db: NVD ids: CVE-2011-5325

Vulnerability CVE-2022-23178

Trust: 3.25

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 15, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2022-23178

Top 50 Interview Questions & Answers | Penetration Testing [Updated 2022] - All About Testing

Trust: 4.5

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Oct. 30, 2017, 3:36 p.m.
 Vulnerabilities: cross-site scripting, directory traversal, denial of service...
Affected productsExternal IDs
vendor: wireshark model: wireshark

Luxul Firmware | Legrand AV

Trust: 3.0

Fetched: Jan. 18, 2022, 11:13 a.m., Published: Dec. 1, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: serve model: serve

How To Keep Your Data Secure In Light Of Apache Log4j Vulnerabilities

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566, VAR-202112-0562

Trust: 4.75

Fetched: Jan. 18, 2022, 11:12 a.m., Published: Jan. 13, 2022, midnight
 Vulnerabilities: denial of service, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228, CVE-2021-45046

VMSA-2021-0028: Questions & Answers about Log4j | VMware

Related entries in the VARIoT vulnerabilities database: VAR-202112-2011, VAR-202112-1782, VAR-202112-0566, VAR-202112-0562

Trust: 5.5

Fetched: Jan. 18, 2022, 11:11 a.m., Published: Sept. 29, 2021, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: serve model: serve
vendor: dell model: emc vxrail
vendor: dell emc model: emc vxrail
db: NVD ids: CVE-2021-44832, CVE-2021-45105, CVE-2021-44228, CVE-2021-45046

Apps of 16 popular smart home devices vulnerable to cyberattack - Indian Herald

Trust: 3.75

Fetched: Jan. 18, 2022, 11:10 a.m., Published: Jan. 18, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: home
vendor: google model: google home
vendor: google model: wifi

Vulnerabilities in MediaTek chips expose millions of Android devices to eavesdropping

Trust: 3.0

Fetched: Jan. 18, 2022, 11:10 a.m., Published: Nov. 24, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: check point model: check point

Over 300,000 MikroTik Devices Found Vulnerable to Remote Hacking Bugs

Related entries in the VARIoT vulnerabilities database: VAR-201910-0546, VAR-201803-2171, VAR-201808-0384, VAR-202111-0616, VAR-201910-0547

Trust: 5.5

Fetched: Jan. 18, 2022, 11:10 a.m., Published: Dec. 9, 2021, midnight
 Vulnerabilities: buffer overflow, directory traversal, code execution
Affected productsExternal IDs
vendor: tp-link model: routers
vendor: mikrotik model: mikrotik routers
vendor: mikrotik model: mikrotik
vendor: mikrotik model: routers
vendor: mikrotik model: winbox
vendor: mikrotik model: routeros
vendor: hikvision model: hikvision
db: NVD ids: CVE-2019-3977, CVE-2018-7445, CVE-2018-14847, CVE-2021-36260, CVE-2021-41653, CVE-2019-3978

Geotab’s Log4j-vulnerability response | Geotab

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566, VAR-202112-2011

Trust: 4.0

Fetched: Jan. 18, 2022, 11:09 a.m., Published: Jan. 18, 2022, 10:09 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228, CVE-2021-44832

Zero-Day Vulnerability Explained

Trust: 3.75

Fetched: Jan. 18, 2022, 11:09 a.m., Published: Jan. 18, 2022, 11:06 a.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: google model: home

Hundreds Of Millions Of Devices At Risk From New Software Vulnerability | AM 800 KXIC

Trust: 3.0

Fetched: Jan. 18, 2022, 11:09 a.m., Published: Jan. 18, 2022, 11:09 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: icloud

Attackers Now Scanning for 'ProxyShell' Vulnerabilities in Exchange Server -- Redmondmag.com

Trust: 4.75

Fetched: Jan. 18, 2022, 11:08 a.m., Published: Jan. 18, 2022, 11:08 a.m.
 Vulnerabilities: code execution, request forgery
Affected productsExternal IDs
db: NVD ids: CVE-2021-34473, CVE-2021-34523, CVE-2021-31207

NPort 5100A Series Serial Device Servers Vulnerability

Trust: 3.0

Fetched: Jan. 18, 2022, 11:07 a.m., Published: Jan. 16, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: moxa model: nport 5100a series
vendor: moxa model: nport 5100a series firmware
vendor: moxa model: moxa
vendor: moxa model: nport
vendor: moxa model: nport 5100a