Sign-up

VARIoT news about IoT security

Apache Log4j Vulnerability

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566, VAR-202112-0562

Trust: 3.25

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 10, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-4428, CVE-2021-44228, CVE-2021-45046

Research finds some medical devices vulnerable to hackers

Trust: 3.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 7, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: siemens model: nucleus

Is it safe to use an old, outdated or preowned Android phone? - CNET

Trust: 3.5

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 4, 2022, 6:58 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: sony model: camera
vendor: nokia model: nokia
vendor: nokia model: series
vendor: google model: pixel
vendor: google model: android
vendor: google model: nexus
vendor: google model: home
vendor: samsung model: samsung galaxy
vendor: samsung model: android phone
vendor: samsung model: galaxy
vendor: samsung model: samsung
vendor: samsung model: galaxy s6

Tech Tuesday: Recent log4j Vulnerability Vulnerabilty Being Actively Exploited in the Wild | DailyRidge

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 3.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228

IoT Vulnerabilities For Cybersecurity | OpenVPN Blog

Trust: 3.25

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 5, 2022, 12:20 a.m.
 Vulnerabilities: default password, denial of service
Affected productsExternal IDs
vendor: google model: wifi
vendor: google model: home

Smart Yet Flawed: IoT Device Vulnerabilities Explained - Security News - Trend Micro DK

Related entries in the VARIoT vulnerabilities database: VAR-202003-1707

Trust: 4.25

Fetched: Jan. 14, 2022, 11:48 a.m., Published: -
 Vulnerabilities: default credentials, denial of service
Affected productsExternal IDs
vendor: trend micro model: home network security
vendor: trend micro model: security
vendor: serve model: serve
vendor: sonos model: sonos
vendor: trend model: home network security
vendor: trend model: security
db: NVD ids: CVE-2020-9054

‘Internet’s on Fire Right Now’: Millions of Devices at Risk Over New Software Vulnerability

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 4.75

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 14, 2021, 10:14 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: canary model: canary
vendor: apple model: icloud
db: NVD ids: CVE-2021-44228

Unpatched HomeKit Vulnerability Exposes iPhones, iPads to DoS Attacks | SecurityWeek.Com

Trust: 3.5

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 17, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: iphone
vendor: apple model: icloud

'DoorLock' Vulnerability Can Force iOS Devices to Endlessly Reboot

Trust: 3.75

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 4, 2022, 8:04 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: iphone
vendor: apple model: icloud

GitHub - 4n4nk3/HikPwn: HikPwn, a simple scanner for Hikvision devices with basic vulnerability scanning capabilities written in Python 3.8.

Trust: 3.25

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 3, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: hikvision model: hikvision

What Is Hardware Security? Definition, Threats, and Best Practices | Toolbox It Security

Trust: 4.5

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 4, 2022, midnight
 Vulnerabilities: default password
Affected productsExternal IDs
vendor: dram model: dram

New macOS vulnerability, “powerdir,” could lead to unauthorized user data access - Microsoft Security Blog

Related entries in the VARIoT vulnerabilities database: VAR-202109-1380, VAR-202108-1285, VAR-202104-0177, VAR-202010-1253, VAR-202010-1252

Trust: 4.25

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 10, 2022, 5 p.m.
 Vulnerabilities: code execution, code injection
Affected productsExternal IDs
vendor: apple model: icloud
vendor: apple model: macos
db: NVD ids: CVE-2021-30713, CVE-2021-30970, CVE-2020-27937, CVE-2020-9771, CVE-2020-9934

Colors of the homeland | Urgent warning of a dangerous vulnerability in “iOS” that can permanently disable the phone - Archyde

Trust: 3.75

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 6, 2022, 9:30 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: icloud

Cybersecurity Trends to Prepare for in 2022

Trust: 4.5

Fetched: Jan. 14, 2022, 11:48 a.m., Published: -
 Vulnerabilities: buffer overflow, memory corruption, service disruption
Affected productsExternal IDs
vendor: ring model: ring

Apple accused of recklessness over iOS security vulnerability | TechRadar

Trust: 5.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 4, 2022, 2:20 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: apple model: icloud

Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution

Trust: 4.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 7, 2022, 7:33 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: google model: chrome
vendor: google model: google chrome

Support, Support Requests, Training, Documentation, and Knowledge base for Check Point products and services

Trust: 3.25

Fetched: Jan. 14, 2022, 11:48 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: check point model: check point

Netgear Nighthawk RAX43 Multiple Vulnerabilities - Research Advisory | Tenable®

Related entries in the VARIoT vulnerabilities database: VAR-202112-2048, VAR-202112-2049, VAR-202112-2047, VAR-202112-2046, VAR-202112-2051

Trust: 5.25

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 30, 2021, 3:49 p.m.
 Vulnerabilities: default credentials, authentication bypass, command injection...
Affected productsExternal IDs
vendor: netgear model: router
vendor: jquery model: jquery
db: NVD ids: CVE-2021-20169, CVE-2021-20168, CVE-2021-20170, CVE-2021-20171, CVE-2021-20166, CVE-2021-201667

'DoorLock' Vulnerability Can Force iOS Devices to Endlessly Reboot | PCMag

Trust: 3.75

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 11, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: watch
vendor: apple model: ipad
vendor: apple model: iphone
vendor: apple model: icloud

Your Lenovo laptop firmware has 2 serious vulnerabilities - MSPoweruser

Related entries in the VARIoT vulnerabilities database: VAR-202112-2487, VAR-202112-2486

Trust: 5.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 17, 2021, 9 p.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: lenovo model: system
vendor: lenovo model: yoga
vendor: lenovo model: thinkpad
db: NVD ids: CVE-2021-3969, CVE-2021-3922