VARIoT news about IoT security

New Proof of Concept tool demos BrakTooth vulnerability exploits - Securezoo Trust: 3.75 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Nov. 8, 2021, 10:33 p.m.	Vulnerabilities: denial of service, code execution

Affected products

External IDs

vendor:

wireshark

model:

wireshark

Cisco warns of hard-coded credentials and default SSH key issues in some productsSecurity Affairs Related entries in the VARIoT vulnerabilities database: VAR-202111-0664 Trust: 3.25 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Nov. 4, 2021, 8:19 p.m.	Vulnerabilities: -

Affected products

External IDs

db:

NVD

ids:

CVE-2021-40119, CVE-2021-43267, CVE-2021-34795

microsoft: Microsoft researchers help Apple fix a critical MacOS bug, Telecom News, ET Telecom Related entries in the VARIoT vulnerabilities database: VAR-202108-2056 Trust: 3.75 Fetched: Nov. 9, 2021, 12:59 p.m., Published: -	Vulnerabilities: -

Affected products

External IDs

vendor:	apple	model:	iphone
vendor:	apple	model:	macos

db:

NVD

ids:

CVE-2021-30892

Four zero-days vulnerabilities and 71 flaws fixed via this month's Patch Tuesday Related entries in the VARIoT vulnerabilities database: VAR-202110-0829, VAR-202103-1464, VAR-202110-1687, VAR-202110-0498, VAR-202103-1463, VAR-202012-1527 Trust: 4.0 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Oct. 12, 2021, 7:01 p.m.	Vulnerabilities: use after free, feature bypass, denial of service...

Affected products

External IDs

db:

NVD

ids:

CVE-2021-40489, CVE-2021-41355, CVE-2021-40475, CVE-2021-40480, CVE-2021-41346, CVE-2021-40450, CVE-2021-40487, CVE-2021-38672, CVE-2021-40454, CVE-2021-3449, CVE-2021-38663, CVE-2021-40460, CVE-2021-40486, CVE-2021-26441, CVE-2021-36970, CVE-2021-36953, CVE-2021-40461, CVE-2021-37978, CVE-2021-40443, CVE-2021-40463, CVE-2021-40482, CVE-2021-41344, CVE-2021-41332, CVE-2021-40462, CVE-2021-40472, CVE-2021-40476, CVE-2021-41354, CVE-2021-40471, CVE-2021-41352, CVE-2021-40455, CVE-2021-37976, CVE-2021-41338, CVE-2021-41345, CVE-2021-41334, CVE-2021-40474, CVE-2021-37980, CVE-2021-41331, CVE-2021-40449, CVE-2021-41363, CVE-2021-26427, CVE-2021-37975, CVE-2021-41340, CVE-2021-40468, CVE-2021-40456, CVE-2021-41330, CVE-2021-40488, CVE-2021-41353, CVE-2021-40467, CVE-2021-41347, CVE-2021-41342, CVE-2021-34453, CVE-2021-40466, CVE-2021-41336, CVE-2021-40479, CVE-2021-40483, CVE-2021-40481, CVE-2021-40469, CVE-2021-37977, CVE-2021-41337, CVE-2021-41343, CVE-2021-41357, CVE-2021-41348, CVE-2021-3450, CVE-2021-40484, CVE-2021-41335, CVE-2021-40457, CVE-2020-1971, CVE-2021-40478, CVE-2021-40470, CVE-2021-37979, CVE-2021-40485, CVE-2021-41350, CVE-2021-26442, CVE-2021-41339, CVE-2021-40477, CVE-2021-38662, CVE-2021-41361, CVE-2021-40473, CVE-2021-40465, CVE-2021-37974, CVE-2021-40464

CVE-2021-28372: ThroughTek "Kalay" Network Device Impersonation Vulnerability Proof of Concept - YouTube Trust: 4.0 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Aug. 17, 2021, midnight	Vulnerabilities: device impersonation

Affected products

External IDs

db:

NVD

ids:

CVE-2021-28372

Layered Security for the Next One Trillion Devices - Arm® Trust: 3.0 Fetched: Nov. 9, 2021, 12:59 p.m., Published: -	Vulnerabilities: -

Affected products	External IDs

NVD - CVE-2021-40116 Related entries in the VARIoT vulnerabilities database: VAR-202110-1352 Trust: 5.5 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 3, 2022, midnight	Vulnerabilities: denial of service

Affected products

External IDs

vendor:	cisco systems	model:	firepower_threat_defense
vendor:	cisco systems	model:	cisco systems
vendor:	cisco systems	model:	firepower_management_center
vendor:	cisco	model:	firepower_threat_defense
vendor:	cisco	model:	cisco systems
vendor:	cisco	model:	firepower_management_center
vendor:	snort	model:	snort

db:

NVD

ids:

CVE-2021-40116

NVD - CVE-2021-34697 Related entries in the VARIoT vulnerabilities database: VAR-202109-0758 Trust: 5.5 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 3, 2022, midnight	Vulnerabilities: denial of service

Affected products

External IDs

vendor:	cisco systems	model:	cisco systems
vendor:	cisco systems	model:	ios xe
vendor:	cisco systems	model:	ios xe software
vendor:	cisco systems	model:	cisco ios
vendor:	cisco systems	model:	cisco ios xe
vendor:	cisco	model:	cisco systems
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	cisco ios
vendor:	cisco	model:	cisco ios xe

db:

NVD

ids:

CVE-2021-34697

CVE security vulnerability database. Security vulnerabilities, exploits, references and more Related entries in the VARIoT vulnerabilities database: VAR-202110-1693, VAR-202110-1256, VAR-202110-1542, VAR-202110-0874 Trust: 5.25 Fetched: Nov. 9, 2021, 12:59 p.m., Published: -	Vulnerabilities: path traversal, input validation vulnerability, denial of service...

Affected products

External IDs

vendor:	mesh	model:	mesh
vendor:	skyworth	model:	penguin aurora box
vendor:	cisco	model:	meeting
vendor:	cisco	model:	cisco meeting server
vendor:	cisco	model:	firepower
vendor:	cisco	model:	300 series managed switches
vendor:	cisco	model:	small business 500 series stackable managed switches
vendor:	cisco	model:	cisco meeting
vendor:	cisco	model:	series managed switches
vendor:	cisco	model:	series smart switches
vendor:	cisco	model:	meeting server
vendor:	cisco	model:	500 series stackable managed switches
vendor:	cisco	model:	firepower threat defense
vendor:	cisco	model:	small business 300 series managed switches
vendor:	cisco	model:	adaptive security appliance
vendor:	cisco	model:	small business
vendor:	cisco	model:	series stackable managed switches
vendor:	cisco	model:	cisco small business
vendor:	cisco	model:	200 series smart switches
vendor:	cisco	model:	series
vendor:	cisco	model:	cisco adaptive security appliance
vendor:	d-link	model:	dsl-3782
vendor:	d-link	model:	dsl-3782 eu
vendor:	openstack	model:	neutron
vendor:	openstack	model:	openstack neutron
vendor:	contiki	model:	contiki
vendor:	freeswitch	model:	freeswitch
vendor:	opc foundation	model:	local discovery server

db:

NVD

ids:

CVE-2021-40712, CVE-2021-41079, CVE-2021-40871, CVE-2021-40463, CVE-2021-42766, CVE-2021-41456, CVE-2021-41168, CVE-2021-43519, CVE-2021-42697, CVE-2021-42340, CVE-2021-40985, CVE-2021-41105, CVE-2021-41380, CVE-2021-41865, CVE-2021-42260, CVE-2021-42715, CVE-2021-41294, CVE-2021-41213, CVE-2021-41872, CVE-2021-41799, CVE-2021-42765, CVE-2021-41186, CVE-2021-40797, CVE-2021-41195, CVE-2021-41459, CVE-2021-41118, CVE-2021-42836, CVE-2021-41099, CVE-2021-42764, CVE-2009-1234, CVE-2021-41055, CVE-2021-41208, CVE-2021-41356, CVE-2021-42084, CVE-2021-40872, CVE-2021-42274, CVE-2021-40523, CVE-2021-40526, CVE-2021-40524, CVE-2021-40732, CVE-2021-41457, CVE-2021-40516, CVE-2021-41800, CVE-2021-42075, CVE-2021-41145, CVE-2021-29584, CVE-2021-40498, CVE-2021-40873, CVE-2021-42917, CVE-2021-41821, CVE-2021-42284, CVE-2021-40495

NVD - CVE-2021-34739 Trust: 4.0 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 3, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	sf500-48p
vendor:	cisco	model:	sf250-26p
vendor:	cisco	model:	sg200-50p_firmware
vendor:	cisco	model:	sf250-26hp
vendor:	cisco	model:	sg300-10sfp_firmware
vendor:	cisco	model:	sf250x-48p_firmware
vendor:	cisco	model:	sf302-08
vendor:	cisco	model:	sg500xg-8f8t
vendor:	cisco	model:	esw2-350g-52dc_firmware
vendor:	cisco	model:	sf500-24mp_firmware
vendor:	cisco	model:	sf550x-48
vendor:	cisco	model:	sf250x-24
vendor:	cisco	model:	sg300-10sfp
vendor:	cisco	model:	sg500-52
vendor:	cisco	model:	sf250x-48
vendor:	cisco	model:	sg500-52_firmware
vendor:	cisco	model:	sf250-50hp
vendor:	cisco	model:	sf300-24pp
vendor:	cisco	model:	sf550x-24mp_firmware
vendor:	cisco	model:	sf250-48_firmware
vendor:	cisco	model:	sg200-50
vendor:	cisco	model:	sg300-10p
vendor:	cisco	model:	sg300-10pp
vendor:	cisco	model:	sx550x-12f_firmware
vendor:	cisco	model:	sg200-26fp
vendor:	cisco	model:	sg350x-48p_firmware
vendor:	cisco	model:	sg500-28p
vendor:	cisco	model:	sx550x-12f
vendor:	cisco	model:	sg300-10mp_firmware
vendor:	cisco	model:	sx550x-52
vendor:	cisco	model:	sg350xg-48t
vendor:	cisco	model:	sf302-08pp
vendor:	cisco	model:	sf550x-24
vendor:	cisco	model:	sg200-26_firmware
vendor:	cisco	model:	sf250-48hp
vendor:	cisco	model:	sf500-48mp_firmware
vendor:	cisco	model:	sg500x-48mp_firmware
vendor:	cisco	model:	sf250-26_firmware
vendor:	cisco	model:	sg500-28
vendor:	cisco	model:	sg500-28p_firmware
vendor:	cisco	model:	sg300-10pp_firmware
vendor:	cisco	model:	sf350-48p_firmware
vendor:	cisco	model:	sf500-24p_firmware
vendor:	cisco	model:	sg500xg-8f8t_firmware
vendor:	cisco	model:	sg500x-24
vendor:	cisco	model:	sf550x-48_firmware
vendor:	cisco	model:	sg500x-24_firmware
vendor:	cisco	model:	sf350-48p
vendor:	cisco	model:	sg350x-48mp
vendor:	cisco	model:	sx550x-24f
vendor:	cisco	model:	sf250-50p
vendor:	cisco	model:	sg300-10_firmware
vendor:	cisco	model:	sf250-50hp_firmware
vendor:	cisco	model:	sf500-48mp
vendor:	cisco	model:	sx550x-24f_firmware
vendor:	cisco	model:	sg500-52mp
vendor:	cisco	model:	sf300-08
vendor:	cisco	model:	sf300-48pp
vendor:	cisco	model:	sg300-10p_firmware
vendor:	cisco	model:	sg350x-48_firmware
vendor:	cisco	model:	sg200-08p_firmware
vendor:	cisco	model:	sg350xg-24f
vendor:	cisco	model:	sg500-28mpp_firmware
vendor:	cisco	model:	sg200-08p
vendor:	cisco	model:	sf250x-48p
vendor:	cisco	model:	sg300-52_firmware
vendor:	cisco	model:	sf302-08p_firmware
vendor:	cisco	model:	sg200-08_firmware
vendor:	cisco	model:	sg500x-48_firmware
vendor:	cisco	model:	sg550x-48mp_firmware
vendor:	cisco	model:	sg300-28pp
vendor:	cisco	model:	sg300-10mp
vendor:	cisco	model:	sg500-28_firmware
vendor:	cisco	model:	sg550x-24
vendor:	cisco	model:	sg200-26
vendor:	cisco	model:	sg300-52p
vendor:	cisco	model:	sg300-28mp_firmware
vendor:	cisco	model:	sf500-48
vendor:	cisco	model:	sg550x-48_firmware
vendor:	cisco	model:	sf250-26hp_firmware
vendor:	cisco	model:	sf300-08_firmware
vendor:	cisco	model:	sf250-10p
vendor:	cisco	model:	sf300-48_firmware
vendor:	cisco	model:	sf250-08
vendor:	cisco	model:	sf302-08mpp
vendor:	cisco	model:	sf500-24p
vendor:	cisco	model:	sg500-28mpp
vendor:	cisco	model:	sg350x-24_firmware
vendor:	cisco	model:	sg550x-24_firmware
vendor:	cisco	model:	sf300-24
vendor:	cisco	model:	sf300-48p
vendor:	cisco	model:	sf250-50_firmware
vendor:	cisco	model:	sf250-10p_firmware
vendor:	cisco	model:	sf302-08_firmware
vendor:	cisco	model:	sf350-48
vendor:	cisco	model:	sf250-08hp
vendor:	cisco	model:	sf300-48p_firmware
vendor:	cisco	model:	sg300-52
vendor:	cisco	model:	sg550x-24mp
vendor:	cisco	model:	sg200-26p_firmware
vendor:	cisco	model:	sg300-28sfp
vendor:	cisco	model:	sg300-52mp
vendor:	cisco	model:	sg300-28p_firmware
vendor:	cisco	model:	esw2-350g-52
vendor:	cisco	model:	sg550x-48
vendor:	cisco	model:	sg550x-24p
vendor:	cisco	model:	sg500-52p
vendor:	cisco	model:	sf500-48p_firmware
vendor:	cisco	model:	sf250-18
vendor:	cisco	model:	sg550x-24mp_firmware
vendor:	cisco	model:	sg500x-48p
vendor:	cisco	model:	sg550x-24p_firmware
vendor:	cisco	model:	sf550x-48p_firmware
vendor:	cisco	model:	sg350x-48
vendor:	cisco	model:	sg550x-24mpp_firmware
vendor:	cisco	model:	sf200-24fp_firmware
vendor:	cisco	model:	sf350-48_firmware
vendor:	cisco	model:	sf200-24fp
vendor:	cisco	model:	sg200-08
vendor:	cisco	model:	sf300-48pp_firmware
vendor:	cisco	model:	sg350xg-24t_firmware
vendor:	cisco	model:	sf200-48p
vendor:	cisco	model:	sg200-26p
vendor:	cisco	model:	sf250-48hp_firmware
vendor:	cisco	model:	sg200-10fp
vendor:	cisco	model:	sg350xg-24t
vendor:	cisco	model:	sf250-26p_firmware
vendor:	cisco	model:	sx550x-16ft_firmware
vendor:	cisco	model:	sf250-50
vendor:	cisco	model:	sf300-24pp_firmware
vendor:	cisco	model:	sg350x-48mp_firmware
vendor:	cisco	model:	sg550x-24mpp
vendor:	cisco	model:	sg300-10
vendor:	cisco	model:	sg550x-48p_firmware
vendor:	cisco	model:	sg350xg-2f10_firmware
vendor:	cisco	model:	sf300-48
vendor:	cisco	model:	sg200-26fp_firmware
vendor:	cisco	model:	sf550x-24_firmware
vendor:	cisco	model:	sf250x-24_firmware
vendor:	cisco	model:	sg200-50fp_firmware
vendor:	cisco	model:	sf300-24p
vendor:	cisco	model:	sg350x-48p
vendor:	cisco	model:	sf250-24_firmware
vendor:	cisco	model:	sg300-10mpp
vendor:	cisco	model:	sg350x-24mp
vendor:	cisco	model:	sg350x-24mp_firmware
vendor:	cisco	model:	sg500x-24p
vendor:	cisco	model:	sf300-24mp_firmware
vendor:	cisco	model:	sg500x-24p_firmware
vendor:	cisco	model:	sf200-48_firmware
vendor:	cisco	model:	sg500x-48p_firmware
vendor:	cisco	model:	sg550x-48p
vendor:	cisco	model:	sg300-28_firmware
vendor:	cisco	model:	sg300-20
vendor:	cisco	model:	sf302-08p
vendor:	cisco	model:	sg300-28
vendor:	cisco	model:	sf250-08hp_firmware
vendor:	cisco	model:	esw2-350g-52_firmware
vendor:	cisco	model:	sf250-24p_firmware
vendor:	cisco	model:	sf200-24p
vendor:	cisco	model:	sf250x-24p_firmware
vendor:	cisco	model:	sf250-18_firmware
vendor:	cisco	model:	sf300-24mp
vendor:	cisco	model:	sg200-50_firmware
vendor:	cisco	model:	sg300-28sfp_firmware
vendor:	cisco	model:	sg300-52p_firmware
vendor:	cisco	model:	sf250x-48_firmware
vendor:	cisco	model:	sg350xg-24f_firmware
vendor:	cisco	model:	sf300-24p_firmware
vendor:	cisco	model:	sf250-48
vendor:	cisco	model:	sf302-08pp_firmware
vendor:	cisco	model:	sf550x-48mp
vendor:	cisco	model:	sf200-48
vendor:	cisco	model:	sf250-08_firmware
vendor:	cisco	model:	sg350x-24
vendor:	cisco	model:	sf302-08mp_firmware
vendor:	cisco	model:	sx550x-16ft
vendor:	cisco	model:	sg200-10fp_firmware
vendor:	cisco	model:	sf550x-48mp_firmware
vendor:	cisco	model:	esw2-550x-48_firmware
vendor:	cisco	model:	sf200-24_firmware
vendor:	cisco	model:	sx550x-24
vendor:	cisco	model:	sx550x-24_firmware
vendor:	cisco	model:	sg350x-24p
vendor:	cisco	model:	esw2-550x-48
vendor:	cisco	model:	sg350xg-2f10
vendor:	cisco	model:	sx550x-24ft_firmware
vendor:	cisco	model:	sf550x-24p_firmware
vendor:	cisco	model:	sg200-18
vendor:	cisco	model:	sx550x-24ft
vendor:	cisco	model:	sf250x-24p
vendor:	cisco	model:	sg500x-48mp
vendor:	cisco	model:	sg350xg-48t_firmware
vendor:	cisco	model:	sf250-24
vendor:	cisco	model:	sg200-50fp
vendor:	cisco	model:	sg550x-48mp
vendor:	cisco	model:	sg300-20_firmware
vendor:	cisco	model:	sf550x-24mp
vendor:	cisco	model:	sg350x-24p_firmware
vendor:	cisco	model:	sf200-24
vendor:	cisco	model:	sf200-48p_firmware
vendor:	cisco	model:	sg300-28p
vendor:	cisco	model:	sf250-26
vendor:	cisco	model:	sg200-18_firmware
vendor:	cisco	model:	sf500-24mp
vendor:	cisco	model:	sf302-08mp
vendor:	cisco	model:	sf302-08mpp_firmware
vendor:	cisco	model:	sg500-52p_firmware
vendor:	cisco	model:	sg500x-48
vendor:	cisco	model:	sf500-48_firmware
vendor:	cisco	model:	sf300-24_firmware
vendor:	cisco	model:	sg300-28mp
vendor:	cisco	model:	sf500-24_firmware
vendor:	cisco	model:	esw2-550x-48dc
vendor:	cisco	model:	sg200-50p
vendor:	cisco	model:	sf200-24p_firmware
vendor:	cisco	model:	sf500-24
vendor:	cisco	model:	sf250-50p_firmware
vendor:	cisco	model:	sf250-24p
vendor:	cisco	model:	esw2-550x-48dc_firmware
vendor:	cisco	model:	sf550x-24p
vendor:	cisco	model:	esw2-350g-52dc
vendor:	cisco	model:	sg300-52mp_firmware
vendor:	cisco	model:	sx550x-52_firmware
vendor:	cisco	model:	sg300-28pp_firmware
vendor:	cisco	model:	sf550x-48p
vendor:	cisco	model:	sg300-10mpp_firmware
vendor:	cisco	model:	sg500-52mp_firmware

db:

NVD

ids:

CVE-2021-34739

A Novel Machine Learning-Based Analysis Model for Smart Contract Vulnerability Trust: 3.5 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Aug. 15, 2021, midnight	Vulnerabilities: integer overflow, denial of service

Affected products

External IDs

vendor:

serve

model:

serve

71 Windows vulnerabilities \| Kaspersky official blog Related entries in the VARIoT vulnerabilities database: VAR-202110-1687 Trust: 5.0 Fetched: Nov. 9, 2021, 12:59 p.m., Published: -	Vulnerabilities: privilege escalation, code execution

Affected products

External IDs

db:

NVD

ids:

CVE-2021-40449, CVE-2021-41335, CVE-2021-40469, CVE-2021-41338

71 Windows vulnerabilities \| Kaspersky official blog Related entries in the VARIoT vulnerabilities database: VAR-202110-1687 Trust: 5.0 Fetched: Nov. 9, 2021, 12:59 p.m., Published: -	Vulnerabilities: privilege escalation, code execution

Affected products

External IDs

db:

NVD

ids:

CVE-2021-40449, CVE-2021-41335, CVE-2021-40469, CVE-2021-41338

Fortinet : Security vulnerabilities Related entries in the VARIoT vulnerabilities database: VAR-202109-0399, VAR-202107-1088, VAR-202107-1086, VAR-202107-0631, VAR-202110-0131, VAR-202111-0232, VAR-202111-0330, VAR-202110-0149, VAR-202109-0502, VAR-202107-0632, VAR-202107-0838, VAR-202110-0132, VAR-202111-0317, VAR-202107-0629, VAR-202107-0837, VAR-202108-0655, VAR-202111-0241, VAR-202107-0836, VAR-202108-0672, VAR-202108-1025, VAR-202107-1087, VAR-202109-0400, VAR-202108-0575, VAR-202109-0501, VAR-202108-2100, VAR-202108-0712, VAR-202108-0658, VAR-202111-0306, VAR-202108-0657, VAR-202108-0673, VAR-202110-0150, VAR-202111-0322, VAR-202106-1430, VAR-202110-0151, VAR-202111-0302, VAR-202107-0839, VAR-202111-0313, VAR-202108-0656, VAR-202108-0674, VAR-202108-0730, VAR-202104-0997, VAR-202111-0231, VAR-202108-0731, VAR-202111-0314, VAR-202111-0305, VAR-202111-0284, VAR-202108-0675, VAR-202111-0343, VAR-202108-0676, VAR-202111-0307 Trust: 5.75 Fetched: Nov. 9, 2021, 12:59 p.m., Published: -	Vulnerabilities: path traversal, denial of service, access control vulnerability...

Affected products

External IDs

vendor:

fortigate

model:

fortios

db:

NVD

ids:

CVE-2021-24016, CVE-2021-26106, CVE-2021-26099, CVE-2021-24020, CVE-2021-24019, CVE-2021-26107, CVE-2021-36176, CVE-2021-36170, CVE-2021-36182, CVE-2021-24022, CVE-2021-26090, CVE-2021-24021, CVE-2021-36181, CVE-2021-24015, CVE-2021-26089, CVE-2021-32597, CVE-2021-36172, CVE-2021-26088, CVE-2021-32587, CVE-2021-26098, CVE-2021-26100, CVE-2021-24017, CVE-2021-24014, CVE-2021-36179, CVE-2021-24018, CVE-2021-36168, CVE-2021-32603, CVE-2021-36186, CVE-2021-32602, CVE-2021-32588, CVE-2021-36175, CVE-2021-41019, CVE-2009-1234, CVE-2021-26111, CVE-2021-36178, CVE-2021-42754, CVE-2021-26095, CVE-2021-36185, CVE-2021-32598, CVE-2021-32590, CVE-2021-26096, CVE-2021-24024, CVE-2021-32595, CVE-2021-26097, CVE-2021-36174, CVE-2021-36187, CVE-2021-36192, CVE-2021-32594, CVE-2021-36183, CVE-2021-32596, CVE-2021-36184

Cisco Ios Xe version 16.9.6 : Security vulnerabilities Related entries in the VARIoT vulnerabilities database: VAR-202103-0768, VAR-202109-0747, VAR-202103-0540, VAR-202103-0550, VAR-202103-0773, VAR-202109-0245, VAR-202103-0778, VAR-202103-0546, VAR-202103-0544, VAR-202103-0534, VAR-202103-0763, VAR-202109-0601, VAR-202103-0549, VAR-202103-0470 Trust: 4.5 Fetched: Nov. 9, 2021, 12:59 p.m., Published: -	Vulnerabilities: memory corruption, denial of service, command injection

Affected products

External IDs

vendor:	cisco	model:	ios software
vendor:	cisco	model:	iox application
vendor:	cisco	model:	cisco ios
vendor:	cisco	model:	cisco iox application
vendor:	cisco	model:	series
vendor:	cisco	model:	catalyst
vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	cisco iox
vendor:	cisco	model:	series switches

db:

NVD

ids:

CVE-2021-1446, CVE-2021-34699, CVE-2021-1377, CVE-2021-1391, CVE-2021-1435, CVE-2021-1619, CVE-2021-1442, CVE-2021-1390, CVE-2009-1234, CVE-2021-1384, CVE-2021-1403, CVE-2021-1453, CVE-2021-34705, CVE-2021-1376, CVE-2021-1352

Firepower Management Center Configuration Guide, Version 6.2 - System Configuration [Cisco Firepower Management Center] - Cisco Related entries in the VARIoT vulnerabilities database: VAR-201307-0421 Trust: 3.5 Fetched: Nov. 9, 2021, 12:59 p.m., Published: -	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	firepower
vendor:	cisco	model:	firepower management center
vendor:	cisco	model:	cisco firepower management center
vendor:	cisco	model:	router

db:

NVD

ids:

CVE-2013-4786

PSIRT Advisories \| FortiGuard Trust: 4.25 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 5, 2022, midnight	Vulnerabilities: path traversal, directory traversal

Affected products	External IDs

Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Cross-Site Scripting Vulnerabilities - Cisco Related entries in the VARIoT vulnerabilities database: VAR-202010-1131 Trust: 5.75 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 11, 2022, 10:54 p.m.	Vulnerabilities: cross-site scripting

Affected products

External IDs

vendor:	cisco	model:	cisco adaptive security appliance
vendor:	cisco	model:	cisco firepower management center
vendor:	cisco	model:	firepower
vendor:	cisco	model:	asa software
vendor:	cisco	model:	firepower threat defense
vendor:	cisco	model:	firepower threat defense software
vendor:	cisco	model:	adaptive security appliance
vendor:	cisco	model:	device manager
vendor:	cisco	model:	cisco adaptive security appliance software
vendor:	cisco	model:	firepower management center
vendor:	cisco	model:	adaptive security appliance software

db:

NVD

ids:

CVE-2020-3581

2021-10 Security Bulletin: Junos OS and Junos OS Evolved: Privilege escalation vulnerability in Juniper Extension Toolkit (JET) (CVE-2021-31350) - Juniper Networks Related entries in the VARIoT vulnerabilities database: VAR-202110-0386 Trust: 5.0 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Oct. 15, 2021, midnight	Vulnerabilities: privilege escalation, privilege management vulnerability

Affected products

External IDs

db:

NVD

ids:

CVE-2021-31350

PSIRT Advisories \| FortiGuard Related entries in the VARIoT vulnerabilities database: VAR-202110-0132 Trust: 3.0 Fetched: Nov. 9, 2021, 12:59 p.m., Published: -	Vulnerabilities: -

Affected products

External IDs

db:	NVD	ids:	CVE-2021-24021
db:	FORTIGATE	ids:	FG-IR-20-098