VARIoT latest news about IoT security

Google Warns of New Android 0-Day Vulnerability Under Active Targeted Attacks \| Cyware Alerts - Hacker News Trust: 3.25 Fetched: Nov. 4, 2021, 1:02 p.m., Published: Nov. 4, 2021, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

google

model:

android

Our Shared Security: Responsibly Disclosing Competitor Vulnerabilities \| Ledger Trust: 3.75 Fetched: Nov. 4, 2021, 1:02 p.m., Published: -	Vulnerabilities: side channel attack

Affected products	External IDs

No title Trust: 3.5 Fetched: Nov. 4, 2021, 1:02 p.m., Published: -	Vulnerabilities: -

Affected products

External IDs

vendor:	hewlett-packard company	model:	hewlett-packard company
vendor:	hewlett-packard company	model:	stream
vendor:	hewlett-packard	model:	hewlett-packard company
vendor:	hewlett-packard	model:	stream

Supply Chain Attacks on IoT - Million+ Devices Are Vulnerable \| by Zen Chan \| Technology Hits \| Medium Trust: 4.25 Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 18, 2021, midnight	Vulnerabilities: buffer overflow, command injection

Affected products

External IDs

vendor:	netgear	model:	router
vendor:	realtek	model:	realtek sdk
vendor:	belkin	model:	router
vendor:	google	model:	wifi
vendor:	google	model:	home
vendor:	asus	model:	wireless routers
vendor:	asus	model:	router
vendor:	asus	model:	asus
vendor:	d-link	model:	router

12 hardware and software vulnerabilities you should address now \| Computerworld Trust: 3.25 Fetched: Nov. 4, 2021, 1:02 p.m., Published: -	Vulnerabilities: buffer overflow, cross-site scripting, code execution

Affected products

External IDs

vendor:	google	model:	android
vendor:	google	model:	home
vendor:	apple	model:	iphone

How Many IoT Devices Are There in 2021? [More than Ever!] Trust: 3.25 Fetched: Nov. 4, 2021, 1:02 p.m., Published: -	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	home
vendor:	google	model:	wifi
vendor:	google	model:	google home
vendor:	mesh	model:	mesh
vendor:	cisco	model:	series
vendor:	cisco	model:	routers

(PDF) A Survey of Security Vulnerability Analysis, Discovery, Detection, and Mitigation on IoT Devices Related entries in the VARIoT vulnerabilities database: VAR-201909-1007, VAR-201909-1008 Trust: 4.0 Fetched: Nov. 4, 2021, 1:02 p.m., Published: -	Vulnerabilities: -

Affected products

External IDs

db:

NVD

ids:

CVE-2019-14896, CVE-2019-13473, CVE-2019-13474, CVE-2019-14897, CVE-2019-14901

Cybersecurity: a beginner's guide to secure medical device design \| Team Consulting Trust: 4.5 Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 23, 2021, 8:39 a.m.	Vulnerabilities: brute force attack, denial of service

Affected products

External IDs

vendor:

trend

model:

security

Keeping the gate locked on your IoT devices: Vulnerabilities found on Amazon's Alexa - Check Point Research Trust: 4.0 Fetched: Nov. 4, 2021, 1:02 p.m., Published: -	Vulnerabilities: code injection, code execution

Affected products

External IDs

vendor:	check point	model:	check point
vendor:	serve	model:	serve

Vulnerability DB \| Snyk Trust: 3.5 Fetched: Nov. 4, 2021, 1:02 p.m., Published: -	Vulnerabilities: restriction bypass, session fixation, cross-site request forgery...

Affected products

External IDs

vendor:

jquery

model:

jquery

12 Online Free Tools to Scan Website Security Vulnerabilities & Malware Trust: 3.5 Fetched: Nov. 4, 2021, 1:02 p.m., Published: -	Vulnerabilities: command injection, sql injection, os command injection...

Affected products	External IDs

10 Web Security Vulnerabilities You Can Prevent \| Toptal Trust: 4.5 Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 10, 2022, midnight	Vulnerabilities: sql injection, session hijacking, request forgery...

Affected products

External IDs

vendor:

serve

model:

serve

How Effectively are you Handling Hidden Vulnerabilities? - SecPod Blog Related entries in the VARIoT vulnerabilities database: VAR-201803-1048 Trust: 3.75 Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 14, 2021, 1:28 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

huawei

model:

huawei

db:

NVD

ids:

CVE-2017-17215

Problems Fixing Critically Vulnerable Hikvision Devices Trust: 3.0 Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 21, 2021, 2:39 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

hikvision

model:

hikvision

10 Tips to Tighten Security on Your Android Device - Hongkiat Trust: 3.5 Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 4, 2021, 1:01 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	essential	model:	phone
vendor:	google	model:	android

Millions of IoT devices vulnerable to remote vulnerabilities Trust: 6.0 Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 20, 2021, 7:58 a.m.	Vulnerabilities: command injection, buffer overflow, code execution

Affected products

External IDs

vendor:

realtek

model:

realtek sdk

db:	NVD	ids:	CVE-2021-35394, CVE-2021-28372, CVE-2021-35392, CVE-2021-35393, CVE-2021-35395
db:	ICS CERT	ids:	ICSA-21-229-01
db:	US CERT	ids:	ICSA-21-229-01

Zero Day Initiative - Analysis of a Parallels Desktop Stack Clash Vulnerability and Variant Hunting using Binary Ninja Trust: 4.75 Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 9, 2021, 2:59 p.m.	Vulnerabilities: memory allocation vulnerability

Affected products

External IDs

vendor:	parallels	model:	desktop
vendor:	parallels	model:	parallels desktop

Security Advisory: Vulnerabilities in Crestron Touch Panel Devices Related entries in the VARIoT vulnerabilities database: VAR-201808-0436 Trust: 5.25 Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 7, 2022, 6:34 p.m.	Vulnerabilities: code execution, command injection

Affected products

External IDs

vendor:	crestron	model:	tsw-760
vendor:	crestron	model:	toolbox protocol

db:

NVD

ids:

CVE-2018-13341

Singapore University of Technology and Design: Research News Trust: 3.75 Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 1, 2021, midnight	Vulnerabilities: code execution

Affected products

External IDs

vendor:	samsung	model:	samsung
vendor:	asus	model:	asus

NVD - CVE-2021-34781 Related entries in the VARIoT vulnerabilities database: VAR-202110-1395 Trust: 4.0 Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 3, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	sourcefire_defense_center
vendor:	cisco	model:	firepower_management_center_virtual_appliance
vendor:	cisco	model:	firepower_threat_defense

db:

NVD

ids:

CVE-2021-34781

VARIoT news about IoT security