Sign-up

VARIoT news about IoT security

News Item

Trust: 4.25

Fetched: Nov. 4, 2021, 1:02 p.m., Published: May 11, 2021, 6:39 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: hikvision model: hikvision
db: NVD ids: CVE-2021-36260

Pegasus Spyware Resurfaces with Newly Revealed Zero-Click Vulnerability - Zimperium Mobile Security Blog

Related entries in the VARIoT vulnerabilities database: VAR-202108-1057

Trust: 3.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 14, 2021, 2:53 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: watchos
vendor: apple model: macos
db: NVD ids: CVE-2021-30860

News Item

Related entries in the VARIoT vulnerabilities database: VAR-202108-1057, VAR-202108-2172

Trust: 3.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: May 11, 2021, 6:39 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-30860, CVE-2021-30858

New Bluetooth vulnerability affects over one billion device - Gizchina.com

Trust: 5.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 8, 2021, 12:11 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: dell model: optiplex
db: NVD ids: CVE-2021-28139

CVE - CVE-2021-28702

Trust: 4.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 3, 2022, midnight
 Vulnerabilities: memory corruption
Affected productsExternal IDs
db: NVD ids: CVE-2021-28702

How to Find 'Stalkerware' on Your Devices - The New York Times

Trust: 3.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 29, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Threat Encyclopedia | FortiGuard

Trust: 4.25

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Nov. 27, 2021, midnight
 Vulnerabilities: request forgery, cross-site scripting
Affected productsExternal IDs
db: NVD ids: CVE-2020-13484, CVE-2020-13483

McAfee Enterprise ATR Uncovers Vulnerabilities in Globally Used B. Braun Infusion Pump | McAfee Blogs

Related entries in the VARIoT vulnerabilities database: VAR-202108-1770, VAR-202108-1299, VAR-202108-1773

Trust: 5.25

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 24, 2021, 1 p.m.
 Vulnerabilities: replay attack, memory corruption, privilege escalation...
Affected productsExternal IDs
vendor: bbraun model: station
db: NVD ids: CVE-2021-33883, CVE-2021-33884, CVE-2020-16238, CVE-2021-33882, CVE-2021-33885, CVE-2021-33886

Risk and Vulnerability - Pacific Disaster Center

Trust: 3.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Nov. 5, 2021, 7:15 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: zoom model: zoom

Google patches zero-day vulnerability, and others, in Android

Related entries in the VARIoT vulnerabilities database: VAR-202111-0579, VAR-202111-0609

Trust: 5.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Nov. 2, 2021, 4:48 p.m.
 Vulnerabilities: use after free, code execution, buffer overflow
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2021-1048, CVE-2021-0913, CVE-2021-1924, CVE-2021-0889, CVE-2021-0918, CVE-2021-0930, CVE-2021-1975

Go Update Your iPhone and iPad Right Now

Related entries in the VARIoT vulnerabilities database: VAR-202108-2057

Trust: 3.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 11, 2021, 8:13 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad air
vendor: apple model: ipod touch
vendor: apple model: ipad
vendor: apple model: iphone
db: NVD ids: CVE-2021-30883

INFRA:HALT vulnerabilities target OT, IoT devices, exploit weakness in NicheStack TCP/IP stack - Industrial CyberIndustrial Cyber

Trust: 3.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 15, 2021, 6:59 a.m.
 Vulnerabilities: information leak, denial of service, memory corruption...
Affected productsExternal IDs
vendor: schneider electric model: monitor
vendor: schneider model: monitor

Microsoft finally puts an end to Windows 10 PrintNightmare vulnerability | Windows Central

Trust: 3.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 10, 2021, 5:51 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-34481

Google patches zero-day vulnerability, and others, in Android | Malwarebytes Labs

Related entries in the VARIoT vulnerabilities database: VAR-202111-0609, VAR-202111-0579

Trust: 4.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Nov. 2, 2021, 4:48 p.m.
 Vulnerabilities: buffer overflow, use after free, code execution
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2021-1975, CVE-2021-1924, CVE-2021-1048, CVE-2021-0930, CVE-2021-0889, CVE-2021-0918, CVE-2021-0913

Cisco Patches Serious Vulnerabilities in Data Center Products | SecurityWeek.Com

Related entries in the VARIoT vulnerabilities database: VAR-202108-0311

Trust: 5.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 9, 2022, midnight
 Vulnerabilities: denial of service, improper access control, file upload issue...
Affected productsExternal IDs
vendor: cisco model: firepower
vendor: cisco model: nexus 9000 series
vendor: cisco model: device manager
vendor: cisco model: nx-os software
vendor: cisco model: nx-os
vendor: cisco model: routers
vendor: cisco model: nexus
vendor: cisco model: nexus 9000
vendor: cisco model: series
vendor: cisco model: application policy infrastructure controller
vendor: blackberry model: blackberry
db: NVD ids: CVE-2021-1577

Cisco Patches High-Severity DoS Vulnerabilities in ASA, FTD Software | SecurityWeek.Com

Related entries in the VARIoT vulnerabilities database: VAR-202110-1394, VAR-202110-1352

Trust: 4.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 16, 2022, midnight
 Vulnerabilities: directory traversal, denial of service, traversal attack...
Affected productsExternal IDs
vendor: cisco model: ios xr
vendor: cisco model: ios xe
vendor: cisco model: firepower threat defense
vendor: cisco model: firepower
vendor: cisco model: adaptive security appliance
vendor: cisco model: ios xe software
vendor: cisco model: firepower management center
vendor: snort model: snort
db: NVD ids: CVE-2021-34783, CVE-2021-40116

New BrakTooth Bluetooth vulnerabilities affect billions of devices around the world | TechSpot

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 11, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: optiplex
vendor: asus model: asus
db: NVD ids: CVE-2021-28139

Cisco Patches Critical Vulnerabilities in IOS XE Software | SecurityWeek.Com

Related entries in the VARIoT vulnerabilities database: VAR-202109-0245

Trust: 5.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 16, 2022, midnight
 Vulnerabilities: denial of service, buffer overflow, code execution
Affected productsExternal IDs
vendor: cisco model: catalyst 9800
vendor: cisco model: ios xe software
vendor: cisco model: sd-wan
vendor: cisco model: series integrated services routers
vendor: cisco model: cloud services router
vendor: cisco model: cloud services router 1000v
vendor: cisco model: integrated services routers
vendor: cisco model: routers
vendor: cisco model: ios xe
vendor: cisco model: catalyst
vendor: cisco model: 1000v
vendor: cisco model: series switches
vendor: cisco model: router
vendor: cisco model: access points
vendor: cisco model: series
db: NVD ids: CVE-2021-34770, CVE-2021-1619, CVE-2021-34727

Security Advisory - Improper Authorization Vulnerability in Some Huawei Products

Related entries in the VARIoT vulnerabilities database: VAR-202109-1642

Trust: 5.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 8, 2021, midnight
 Vulnerabilities: authorization vulnerability, code execution
Affected productsExternal IDs
vendor: huawei model: huawei
db: NVD ids: CVE-2021-37101

How IoT Devices Are Embracing Security [2021] Trustonic

Trust: 3.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 19, 2021, 9:07 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: samsung model: samsung
vendor: samsung model: mobile
vendor: google model: home