Sign-up

VARIoT news about IoT security

Securing and Managing IoT and IoMT Devices in Healthcare

Trust: 3.5

Fetched: Oct. 4, 2023, 10:05 a.m., Published: March 14, 2022, 10 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: palo model: networks
vendor: palo alto networks model: networks

The Top Ten IoT Vulnerabilities | Infosec

Trust: 3.5

Fetched: Oct. 4, 2023, 10:05 a.m., Published: Feb. 17, 2018, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs

Security risks with modified (rooted) Android versions - Google Account Help

Trust: 3.0

Fetched: Oct. 4, 2023, 10:04 a.m., Published: Jan. 5, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

83 million IoT devices at risk of hacking | ITPro

Trust: 3.0

Fetched: Oct. 4, 2023, 10:03 a.m., Published: Aug. 18, 2021, 10 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-28372

The real dangers of vulnerable IoT devices | Infosec

Trust: 3.0

Fetched: Oct. 4, 2023, 10:02 a.m., Published: Sept. 15, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-31251

Devices Still Vulnerable to DMA Attacks Despite Protections - SecurityWeek

Related entries in the VARIoT vulnerabilities database: VAR-201912-1255

Trust: 4.5

Fetched: Oct. 4, 2023, 10:02 a.m., Published: Jan. 30, 2020, midnight
 Vulnerabilities: code execution, code injection
Affected productsExternal IDs
vendor: dell model: bios
db: NVD ids: CVE-2019-18579

Apache Log4j Vulnerability Guidance | CISA

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 4.0

Fetched: Oct. 4, 2023, 10 a.m., Published: April 8, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228

Outdated IoT healthcare devices pose major security threats | CSO Online

Trust: 3.0

Fetched: Oct. 4, 2023, 9:54 a.m., Published: Jan. 31, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs

37 hardware and firmware vulnerabilities: A guide to the threats | CSO Online

Related entries in the VARIoT vulnerabilities database: VAR-202203-0083, VAR-201611-0121, VAR-201905-0709, VAR-202006-0241, VAR-202203-0045, VAR-201905-0711, VAR-201905-0710, VAR-201905-1248, VAR-202206-1278

Trust: 5.25

Fetched: Oct. 4, 2023, 9:54 a.m., Published: Aug. 11, 2022, midnight
 Vulnerabilities: code execution, privilege escalation
Affected productsExternal IDs
vendor: google model: home
vendor: google model: android
vendor: infineon model: trusted platform
vendor: apple model: macos
vendor: apple model: macbook
db: NVD ids: CVE-2022-0002, CVE-2016-6728, CVE-2020-8694, CVE-2018-12126, CVE-2020-0543, CVE-2022-0001, CVE-2018-12130, CVE-2022-23825, CVE-2020-8695, CVE-2022-29901, CVE-2022-29900, CVE-2022-23823, CVE-2018-12127, CVE-2019-11091, CVE-2022-23960, CVE-2022-24436

Anatomy of an IoT malware attack - IBM Developer

Trust: 5.0

Fetched: Oct. 4, 2023, 9:52 a.m., Published: -
 Vulnerabilities: default credentials, weak password, denial of service...
Affected productsExternal IDs
vendor: apple model: iphone
vendor: google model: android
vendor: google model: home
vendor: google model: wifi
vendor: radware model: gateway

Internet of Things: Security and Solutions Survey - PMC

Trust: 4.0

Fetched: Oct. 4, 2023, 9:48 a.m., Published: Oct. 4, 2022, midnight
 Vulnerabilities: replay attack, information leakage, denial of service...
Affected productsExternal IDs
vendor: rising model: antivirus
vendor: cisco model: leap
vendor: cisco model: umbrella
vendor: cisco model: routers
vendor: cisco model: meeting
vendor: mesh model: mesh
vendor: rapid model: scada
vendor: symantec model: antivirus

Network Attack Trends Fall 2020: Internet of Threats

Related entries in the VARIoT vulnerabilities database: VAR-201912-1374, VAR-201205-0246, VAR-201205-0305, VAR-201905-1157, VAR-201805-0263, VAR-201805-0262, VAR-202002-1447, VAR-202006-0924, VAR-202006-1056

Trust: 5.5

Fetched: Oct. 4, 2023, 9:47 a.m., Published: Jan. 28, 2022, 9:19 p.m.
 Vulnerabilities: information disclosure, traversal attack, command execution...
Affected productsExternal IDs
vendor: zyxel model: emg2926
vendor: draytek model: vigor2960 1.3.1_beta
vendor: draytek model: vigor300b 1.3.3_beta
vendor: draytek model: vigor3900 1.4.4_beta
vendor: draytek model: vigor
vendor: draytek model: vigor2960
vendor: draytek model: vigor300b
vendor: draytek model: vigor3900
vendor: draytek model: routers
vendor: palo model: networks
vendor: palo model: firewall
vendor: dasan model: gpon routers
vendor: netgear model: dgn2200
vendor: netgear model: router
vendor: netgear model: dgn1000
vendor: d-link model: dsl-2750b router
vendor: d-link model: router
vendor: d-link model: dsl-2750b
vendor: d-link model: dap-1860
vendor: d-link model: dir-818lw
vendor: d-link model: dir-818lw rev.a 2.05.b03
vendor: d-link model: dir-822
vendor: palo alto networks model: networks
vendor: palo alto networks model: firewall
db: NVD ids: CVE-2019-19597, CVE-2020-17496, CVE-2012-2311, CVE-2012-1823, CVE-2019-12725, CVE-2019-16759, CVE-2018-19986, CVE-2018-10562, CVE-2018-10561, CVE-2019-9082, CVE-2018-7600, CVE-2020-8515, CVE-2020-25213, CVE-2020-14472, CVE-2017-9841, CVE-2020-15415, CVE-2018-20062

Update Regarding CVE-2022-40684 | Fortinet Blog

Related entries in the VARIoT vulnerabilities database: VAR-202210-0198

Trust: 3.75

Fetched: Oct. 4, 2023, 9:45 a.m., Published: Oct. 14, 2022, 8:05 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2022-40684

Medical Device Security and Patient Safety | Optiv

Trust: 3.0

Fetched: Oct. 4, 2023, 9:44 a.m., Published: Oct. 2, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs

Microsoft Defender for Endpoint - Mobile Threat Defense | Microsoft Learn

Trust: 3.0

Fetched: Oct. 4, 2023, 9:44 a.m., Published: Dec. 7, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Here are the top phone security threats in 2022 and how to avoid them | ZDNET

Trust: 3.5

Fetched: Oct. 4, 2023, 9:43 a.m., Published: Oct. 4, 2022, midnight
 Vulnerabilities: service disruption
Affected productsExternal IDs
vendor: google model: android
vendor: apple model: watch
vendor: apple model: iphone
vendor: avast model: antivirus
vendor: essential model: phone

A Comprehensive Review of Android Security: Threats, Vulnerabilities, Malware Detection, and Analysis

Trust: 3.25

Fetched: Oct. 4, 2023, 9:40 a.m., Published: June 29, 2022, midnight
 Vulnerabilities: script execution, code execution, denial of service...
Affected productsExternal IDs
vendor: rising model: antivirus
vendor: blackberry model: curve
vendor: blackberry model: link
vendor: blackberry model: blackberry
vendor: blackberry model: smartphone
vendor: essential model: phone
vendor: google model: android

Flaws in industrial wireless IoT solutions can give attackers deep access into OT networks | CSO Online

Trust: 3.5

Fetched: Oct. 4, 2023, 9:39 a.m., Published: Feb. 10, 2023, midnight
 Vulnerabilities: code execution, default credentials
Affected productsExternal IDs

'Millions' of Dell Windows PCs Contain 'Critical' Driver Vulnerability -- Redmondmag.com

Related entries in the VARIoT vulnerabilities database: VAR-202105-0569

Trust: 5.75

Fetched: Oct. 4, 2023, 9:38 a.m., Published: -
 Vulnerabilities: access control vulnerability, information disclosure, denial of service
Affected productsExternal IDs
vendor: dell model: bios
db: NVD ids: CVE-2021-21551

Most Common Wireless Network Attacks - WebTitan DNS Filter

Trust: 4.25

Fetched: Oct. 4, 2023, 9:37 a.m., Published: June 19, 2021, 9:36 a.m.
 Vulnerabilities: buffer overflow, weak password, default credentials
Affected productsExternal IDs
vendor: essential model: phone
vendor: orange model: livebox