Sign-up

VARIoT news about IoT security

The HomeKit Bug That Can Cripple Your iPhone - The Mac Observer

Trust: 3.5

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 3, 2022, 9:53 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: icloud

Why is the Log4j vulnerability causing alarm among tech companies? | TechGig

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 4.75

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 17, 2021, 10:49 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: check point model: check point
vendor: cisco model: meeting server
vendor: cisco model: webex
vendor: cisco model: meeting
vendor: cisco model: cisco webex
vendor: cisco model: webex meeting server
db: NVD ids: CVE-2021-44228

Security Advisory for Post-Authentication Command Injection on Some Routers and WiFi Systems, PSV-2020-0557 | Answer | NETGEAR Support

Trust: 5.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: -
 Vulnerabilities: command injection
Affected productsExternal IDs
vendor: netgear model: r7850
vendor: netgear model: r8000
vendor: netgear model: r8000p
vendor: netgear model: rbr850
vendor: netgear model: rbs850
vendor: netgear model: r7900p
vendor: netgear model: orbi
vendor: netgear model: rbk852

How To Scan For Log4j Vulnerability ? - Crispcor

Trust: 3.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 9, 2022, 5:17 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs

Conti Ransomware Hitting VMware vCenter With Log4j Exploit

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 5.25

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 17, 2021, 2:02 p.m.
 Vulnerabilities: code execution, privilege elevation
Affected productsExternal IDs
vendor: trend model: security
vendor: palo model: networks
db: NVD ids: CVE-2021-44228

Software flaws in walk-through metal detectors made them hackable

Trust: 3.75

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 22, 2021, 6:18 p.m.
 Vulnerabilities: directory traversal, buffer overflow
Affected productsExternal IDs
db: NVD ids: CVE-2021-21905, CVE-2021-21904, CVE-2021-21901, CVE-2021-21909, CVE-2021-21907, CVE-2021-21908, CVE-2021-21906, CVE-2021-21903, CVE-2021-21902

Security Advisory - Cross-Site Scripting(XSS) Vulnerability in Huawei WS318n Product

Trust: 4.25

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 17, 2021, midnight
 Vulnerabilities: cross-site scripting
Affected productsExternal IDs
vendor: huawei model: huawei

Tracking Device Made by Apple Showing Up in Suspected Crimes - NBC10 Philadelphia

Trust: 3.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 23, 2021, 5:26 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone

CVE - CVE-2021-43083

Trust: 3.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 3, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-43083

Log4Shell vulnerability assessment and potential product impact statement | Spacelabs Healthcare

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 3.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 14, 2021, 12:13 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228

New Log4j flaw: 5 reasons why organizations should worry now - ManageEngine Blog

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 5.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 20, 2021, 4:59 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228

Latest Vendavo Response to Log4Shell Vulnerability - Vendavo

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566, VAR-202112-0562

Trust: 4.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 19, 2021, 10:15 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228, CVE-2021-45046

Microsoft details macOS vulnerability that allowed protected data access | AppleInsider

Trust: 3.75

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 12, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: macos
vendor: apple model: icloud

Important Update on Critical Log4j Vulnerability - CVE-2021-44228 | Arctic Wolf

Related entries in the VARIoT vulnerabilities database: VAR-202112-0562, VAR-202112-0566, VAR-202112-2011

Trust: 4.5

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 29, 2021, 2:20 p.m.
 Vulnerabilities: code execution, input validation vulnerability
Affected productsExternal IDs
vendor: serve model: serve
db: NVD ids: CVE-2021-45046, CVE-2021-44228, CVE-2021-44832

Knowledge Base - Is there any impact for Barco Products on the Log4Shell vulnerability? (CVE-2021-44228) - KB12495 - Barco

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 5.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: -
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: barco model: clickshare
db: NVD ids: CVE-2021-44228

Warning Log4j attackers are switching tactics to make money as experts say it could affect millions of devices for YEARS

Trust: 3.75

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 17, 2021, 3:41 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: samsung model: printer
vendor: samsung model: note
vendor: samsung model: samsung

Is the Ring Doorbell susceptible to the Log4j vulnerability? - Products / Video Doorbells - Ring Community

Trust: 3.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Jan. 2, 2022, 2:23 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: ring model: video doorbells
vendor: ring model: ring

Update your PC to patch 6 zero-day flaws, 90 vulnerabilities

Trust: 4.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: -
 Vulnerabilities: code execution, cross-site scripting
Affected productsExternal IDs

Cyber Week in Review: December 17, 2021 | Council on Foreign Relations

Trust: 3.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 17, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: huawei model: huawei

Are Endpoints at Risk for Log4Shell Attacks

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 5.0

Fetched: Jan. 14, 2022, 11:48 a.m., Published: Dec. 18, 2021, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228