Sign-up

VARIoT news about IoT security

Threat Encyclopedia | FortiGuard

Trust: 4.25

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Nov. 27, 2021, midnight
 Vulnerabilities: request forgery, cross-site scripting
Affected productsExternal IDs
db: NVD ids: CVE-2020-13484, CVE-2020-13483

McAfee Enterprise ATR Uncovers Vulnerabilities in Globally Used B. Braun Infusion Pump | McAfee Blogs

Related entries in the VARIoT vulnerabilities database: VAR-202108-1770, VAR-202108-1299, VAR-202108-1773

Trust: 5.25

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 24, 2021, 1 p.m.
 Vulnerabilities: replay attack, memory corruption, privilege escalation...
Affected productsExternal IDs
vendor: bbraun model: station
db: NVD ids: CVE-2021-33883, CVE-2021-33884, CVE-2020-16238, CVE-2021-33882, CVE-2021-33885, CVE-2021-33886

Risk and Vulnerability - Pacific Disaster Center

Trust: 3.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Nov. 5, 2021, 7:15 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: zoom model: zoom

Google patches zero-day vulnerability, and others, in Android

Related entries in the VARIoT vulnerabilities database: VAR-202111-0579, VAR-202111-0609

Trust: 5.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Nov. 2, 2021, 4:48 p.m.
 Vulnerabilities: use after free, code execution, buffer overflow
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2021-1048, CVE-2021-0913, CVE-2021-1924, CVE-2021-0889, CVE-2021-0918, CVE-2021-0930, CVE-2021-1975

Go Update Your iPhone and iPad Right Now

Related entries in the VARIoT vulnerabilities database: VAR-202108-2057

Trust: 3.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 11, 2021, 8:13 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad air
vendor: apple model: ipod touch
vendor: apple model: ipad
vendor: apple model: iphone
db: NVD ids: CVE-2021-30883

INFRA:HALT vulnerabilities target OT, IoT devices, exploit weakness in NicheStack TCP/IP stack - Industrial CyberIndustrial Cyber

Trust: 3.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 15, 2021, 6:59 a.m.
 Vulnerabilities: information leak, denial of service, memory corruption...
Affected productsExternal IDs
vendor: schneider electric model: monitor
vendor: schneider model: monitor

Microsoft finally puts an end to Windows 10 PrintNightmare vulnerability | Windows Central

Trust: 3.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 10, 2021, 5:51 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-34481

Google patches zero-day vulnerability, and others, in Android | Malwarebytes Labs

Related entries in the VARIoT vulnerabilities database: VAR-202111-0609, VAR-202111-0579

Trust: 4.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Nov. 2, 2021, 4:48 p.m.
 Vulnerabilities: buffer overflow, use after free, code execution
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2021-1975, CVE-2021-1924, CVE-2021-1048, CVE-2021-0930, CVE-2021-0889, CVE-2021-0918, CVE-2021-0913

Cisco Patches Serious Vulnerabilities in Data Center Products | SecurityWeek.Com

Related entries in the VARIoT vulnerabilities database: VAR-202108-0311

Trust: 5.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 9, 2022, midnight
 Vulnerabilities: denial of service, improper access control, file upload issue...
Affected productsExternal IDs
vendor: cisco model: firepower
vendor: cisco model: nexus 9000 series
vendor: cisco model: device manager
vendor: cisco model: nx-os software
vendor: cisco model: nx-os
vendor: cisco model: routers
vendor: cisco model: nexus
vendor: cisco model: nexus 9000
vendor: cisco model: series
vendor: cisco model: application policy infrastructure controller
vendor: blackberry model: blackberry
db: NVD ids: CVE-2021-1577

Cisco Patches High-Severity DoS Vulnerabilities in ASA, FTD Software | SecurityWeek.Com

Related entries in the VARIoT vulnerabilities database: VAR-202110-1394, VAR-202110-1352

Trust: 4.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 16, 2022, midnight
 Vulnerabilities: directory traversal, denial of service, traversal attack...
Affected productsExternal IDs
vendor: cisco model: ios xr
vendor: cisco model: ios xe
vendor: cisco model: firepower threat defense
vendor: cisco model: firepower
vendor: cisco model: adaptive security appliance
vendor: cisco model: ios xe software
vendor: cisco model: firepower management center
vendor: snort model: snort
db: NVD ids: CVE-2021-34783, CVE-2021-40116

New BrakTooth Bluetooth vulnerabilities affect billions of devices around the world | TechSpot

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 11, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: optiplex
vendor: asus model: asus
db: NVD ids: CVE-2021-28139

Cisco Patches Critical Vulnerabilities in IOS XE Software | SecurityWeek.Com

Related entries in the VARIoT vulnerabilities database: VAR-202109-0245

Trust: 5.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 16, 2022, midnight
 Vulnerabilities: denial of service, buffer overflow, code execution
Affected productsExternal IDs
vendor: cisco model: catalyst 9800
vendor: cisco model: ios xe software
vendor: cisco model: sd-wan
vendor: cisco model: series integrated services routers
vendor: cisco model: cloud services router
vendor: cisco model: cloud services router 1000v
vendor: cisco model: integrated services routers
vendor: cisco model: routers
vendor: cisco model: ios xe
vendor: cisco model: catalyst
vendor: cisco model: 1000v
vendor: cisco model: series switches
vendor: cisco model: router
vendor: cisco model: access points
vendor: cisco model: series
db: NVD ids: CVE-2021-34770, CVE-2021-1619, CVE-2021-34727

Security Advisory - Improper Authorization Vulnerability in Some Huawei Products

Related entries in the VARIoT vulnerabilities database: VAR-202109-1642

Trust: 5.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 8, 2021, midnight
 Vulnerabilities: authorization vulnerability, code execution
Affected productsExternal IDs
vendor: huawei model: huawei
db: NVD ids: CVE-2021-37101

How IoT Devices Are Embracing Security [2021] Trustonic

Trust: 3.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 19, 2021, 9:07 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: samsung model: samsung
vendor: samsung model: mobile
vendor: google model: home

VMware issues details of emergency actions that need taking to address a critical security vulnerability

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 24, 2021, 8:35 a.m.
 Vulnerabilities: privilege escalation, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-22005

Microsoft Researchers Help Apple Fix A Critical MacOS Bug

Related entries in the VARIoT vulnerabilities database: VAR-202108-2056

Trust: 4.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Nov. 1, 2021, 1:17 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: macos
vendor: apple model: iphone
db: NVD ids: CVE-2021-30892

What Medical Device Vendors Can Learn From Past Cybersecurity Vulnerability Disclosures | October 19, 2021 | Engineering360 Webinars

Trust: 3.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 19, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs

Realtek vulnerabilities compromise hundreds of thousands of routers, IoT devices | TechRadar

Trust: 3.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 16, 2021, 3:19 p.m.
 Vulnerabilities: memory corruption, command injection
Affected productsExternal IDs
vendor: asus model: asus
vendor: realtek model: sdk
vendor: realtek model: realtek sdk

Patch this AMD CPU vulnerability now, users warned | TechRadar

Trust: 3.25

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 20, 2021, 1:16 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-26333

Local Privilege Escalation Vulnerability (0-day) in all Windows Versions | Born's Tech and Windows World

Related entries in the VARIoT vulnerabilities database: VAR-202108-1005

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 29, 2021, 3:33 p.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: trend model: security
vendor: trend micro model: security
db: NVD ids: CVE-2021-34484