VARIoT latest news about IoT security

System vulnerabilities \| FITech Trust: 3.0 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Oct. 26, 2021, 10:01 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

zoom

model:

zoom

Vulnerability Summary for the Week of October 25, 2021 \| CISA Related entries in the VARIoT vulnerabilities database: VAR-202110-1709, VAR-202110-1376, VAR-202110-1287, VAR-202110-1355, VAR-202110-1354, VAR-202110-1391, VAR-202110-1542, VAR-202110-1286, VAR-202110-1148, VAR-202110-1363, VAR-202110-1247, VAR-202110-1361, VAR-202110-1147, VAR-202110-1402, VAR-202110-1226, VAR-202110-1372, VAR-202110-1256, VAR-202110-1065, VAR-202110-1615, VAR-202110-1305, VAR-202110-1375, VAR-202110-1392, VAR-202110-1362, VAR-202110-1393, VAR-202110-1371, VAR-202110-1356, VAR-202110-1327, VAR-202110-1366 Trust: 5.25 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Oct. 25, 2021, midnight	Vulnerabilities: access control vulnerability, directory traversal, uncontrolled search path...

Affected products

External IDs

vendor:	parallels	model:	parallels desktop
vendor:	parallels	model:	desktop
vendor:	parallels	model:	parallels_desktop
vendor:	huawei	model:	ngfw module
vendor:	huawei	model:	huawei
vendor:	huawei	model:	ngfw
vendor:	huawei	model:	emui
vendor:	huawei	model:	ips_module_firmware
vendor:	huawei	model:	s12700
vendor:	huawei	model:	s5700
vendor:	huawei	model:	s2700
vendor:	huawei	model:	s6700 v200r010c00spc600
vendor:	huawei	model:	nip6600 v500r005c00
vendor:	huawei	model:	s7700
vendor:	huawei	model:	ngfw module v500r005c00
vendor:	huawei	model:	usg9500
vendor:	huawei	model:	s1700
vendor:	huawei	model:	ips module
vendor:	huawei	model:	nip6600
vendor:	huawei	model:	s6700
vendor:	huawei	model:	s9700
vendor:	google	model:	android
vendor:	google	model:	wifi
vendor:	automatedlogic	model:	webctrl
vendor:	advantech	model:	webaccess
vendor:	advantech	model:	webaccess/nms
vendor:	freeswitch	model:	freeswitch
vendor:	jquery	model:	jquery
vendor:	d-link	model:	dap-2020
vendor:	d-link	model:	dap-2020_firmware
vendor:	codesys	model:	control
vendor:	codesys	model:	gateway
vendor:	codesys	model:	runtime
vendor:	codesys	model:	codesys
vendor:	codesys	model:	web server
vendor:	skyworth	model:	penguin aurora box
vendor:	cisco	model:	firepower
vendor:	cisco	model:	firepower_management_center
vendor:	cisco	model:	adaptive_security_appliance
vendor:	cisco	model:	firepower_management_center_virtual_appliance
vendor:	cisco	model:	firepower management center
vendor:	cisco	model:	cisco firepower management center
vendor:	cisco	model:	adaptive security appliance
vendor:	cisco	model:	download manager
vendor:	cisco	model:	routers
vendor:	cisco	model:	firepower threat defense
vendor:	cisco	model:	cisco adaptive security appliance

db:

NVD

ids:

CVE-2020-23041, CVE-2021-38453, CVE-2021-24662, CVE-2021-24884, CVE-2021-22402, CVE-2021-42343, CVE-2021-34793, CVE-2021-38461, CVE-2021-38465, CVE-2021-35231, CVE-2021-24779, CVE-2020-23040, CVE-2021-41179, CVE-2019-3556, CVE-2021-38258, CVE-2021-38467, CVE-2021-37129, CVE-2021-42542, CVE-2021-20526, CVE-2020-23038, CVE-2021-34584, CVE-2021-24487, CVE-2021-0936, CVE-2020-23036, CVE-2020-23046, CVE-2020-36486, CVE-2021-37221, CVE-2020-22864, CVE-2021-37131, CVE-2020-36496, CVE-2020-23045, CVE-2021-41747, CVE-2021-35233, CVE-2021-39225, CVE-2021-41078, CVE-2021-34787, CVE-2020-7867, CVE-2020-23047, CVE-2021-0631, CVE-2021-29835, CVE-2021-38463, CVE-2021-41177, CVE-2021-41873, CVE-2020-36502, CVE-2020-36495, CVE-2021-38485, CVE-2021-34857, CVE-2021-41145, CVE-2021-24543, CVE-2021-41305, CVE-2021-42538, CVE-2021-34754, CVE-2020-23048, CVE-2020-23060, CVE-2021-34862, CVE-2021-41307, CVE-2020-36488, CVE-2021-22401, CVE-2021-29774, CVE-2021-22405, CVE-2021-42540, CVE-2021-41176, CVE-2021-39223, CVE-2021-24885, CVE-2021-38477, CVE-2021-35236, CVE-2021-0706, CVE-2021-38260, CVE-2021-34859, CVE-2021-38473, CVE-2021-26609, CVE-2021-34595, CVE-2021-0651, CVE-2021-35235, CVE-2021-42258, CVE-2021-41728, CVE-2021-37130, CVE-2021-41178, CVE-2021-31682, CVE-2021-42539, CVE-2021-0630, CVE-2021-41182, CVE-2021-0483, CVE-2021-40527, CVE-2021-42534, CVE-2021-41304, CVE-2021-34863, CVE-2021-42836, CVE-2021-34856, CVE-2021-41308, CVE-2020-23061, CVE-2021-22101, CVE-2021-40125, CVE-2020-23054, CVE-2021-34864, CVE-2021-41157, CVE-2020-23050, CVE-2021-39224, CVE-2020-23051, CVE-2021-31835, CVE-2021-38455, CVE-2021-41105, CVE-2021-34583, CVE-2021-34762, CVE-2021-41183, CVE-2017-20007, CVE-2021-34761, CVE-2021-34794, CVE-2021-34586, CVE-2021-38450, CVE-2020-36497, CVE-2021-34585, CVE-2021-34791, CVE-2021-34596, CVE-2021-41184, CVE-2021-22404, CVE-2021-34790, CVE-2021-42556, CVE-2021-34593, CVE-2020-36485, CVE-2021-24774, CVE-2021-38469, CVE-2021-41158, CVE-2021-37372, CVE-2021-32951, CVE-2020-23043, CVE-2020-28969, CVE-2021-34861, CVE-2021-38471, CVE-2021-40526, CVE-2021-41171, CVE-2020-23042, CVE-2021-42536, CVE-2021-38479, CVE-2021-41306, CVE-2021-3900, CVE-2021-41185, CVE-2021-34764, CVE-2020-36494, CVE-2021-24769

Linux Vulnerabilities of the Week: October 18, 2021 - SYXSENSE Related entries in the VARIoT vulnerabilities database: VAR-202110-1690 Trust: 3.75 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Oct. 18, 2021, 4:33 p.m.	Vulnerabilities: directory traversal, improper validation, code execution

Affected products

External IDs

db:

NVD

ids:

CVE-2021-41103, CVE-2021-41072, CVE-2021-38160, CVE-2021-3653, CVE-2021-42013

Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Resource Exhaustion Denial of Service Vulnerability - Cisco Trust: 3.75 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 11, 2022, 10:54 p.m.	Vulnerabilities: denial of service, resource exhaustion

Affected products

External IDs

vendor:	cisco	model:	firepower
vendor:	cisco	model:	firepower threat defense software
vendor:	cisco	model:	asa software
vendor:	cisco	model:	firepower threat defense
vendor:	cisco	model:	cisco adaptive security appliance
vendor:	cisco	model:	cisco firepower management center
vendor:	cisco	model:	cisco adaptive security appliance software
vendor:	cisco	model:	adaptive security appliance software
vendor:	cisco	model:	adaptive security appliance
vendor:	cisco	model:	firepower management center

Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software SSL/TLS Denial of Service Vulnerability - Cisco Trust: 4.0 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 11, 2022, 10:54 p.m.	Vulnerabilities: denial of service

Affected products

External IDs

vendor:	cisco	model:	firepower
vendor:	cisco	model:	firepower threat defense software
vendor:	cisco	model:	asa software
vendor:	cisco	model:	firepower threat defense
vendor:	cisco	model:	cisco adaptive security appliance
vendor:	cisco	model:	cisco firepower management center
vendor:	cisco	model:	cisco adaptive security appliance software
vendor:	cisco	model:	adaptive security appliance software
vendor:	cisco	model:	adaptive security appliance
vendor:	cisco	model:	firepower management center

Security Updates and Resources \| Android Open Source Project Trust: 3.25 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Oct. 11, 2021, midnight	Vulnerabilities: authentication bypass, code execution, denial of service

Affected products

External IDs

vendor:	google	model:	pixel
vendor:	google	model:	android

Vulnerability Summary for the Week of November 1, 2021 \| CISA Related entries in the VARIoT vulnerabilities database: VAR-202111-0401, VAR-202111-0241, VAR-202111-0421, VAR-202111-0346, VAR-202111-0248, VAR-202111-0400, VAR-202111-0313, VAR-202110-1080, VAR-202111-0250, VAR-202111-0305, VAR-202111-0402, VAR-202111-0322, VAR-202111-0330, VAR-202111-0251, VAR-202110-1695, VAR-202111-0314, VAR-202111-0307, VAR-202110-1437, VAR-202111-0393, VAR-202111-0419, VAR-202111-0232, VAR-202111-0315, VAR-202110-1440, VAR-202111-0418, VAR-202111-0231, VAR-202111-0249 Trust: 5.25 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Nov. 1, 2021, midnight	Vulnerabilities: code injection, access control vulnerability, directory traversal...

Affected products

External IDs

vendor:	google	model:	google chrome
vendor:	google	model:	android
vendor:	google	model:	nexus
vendor:	google	model:	chrome
vendor:	mesh	model:	mesh
vendor:	tendacn	model:	ac9_firmware
vendor:	alibaba	model:	smart app
vendor:	netapp	model:	clustered data ontap
vendor:	netapp	model:	data ontap
vendor:	cisco	model:	webex_meetings
vendor:	cisco	model:	service management
vendor:	cisco	model:	webex video mesh
vendor:	cisco	model:	webex meetings
vendor:	cisco	model:	collaboration_meeting_rooms
vendor:	cisco	model:	webex
vendor:	cisco	model:	cisco unity connection
vendor:	cisco	model:	unified communications manager
vendor:	cisco	model:	unified communications
vendor:	cisco	model:	cisco webex
vendor:	cisco	model:	unity connection
vendor:	cisco	model:	unified communications manager session management edition
vendor:	cisco	model:	unity
vendor:	cisco	model:	umbrella
vendor:	cisco	model:	cisco unified communications manager
vendor:	cisco	model:	catalyst
vendor:	cisco	model:	common services platform collector
vendor:	cisco	model:	nexus
vendor:	cisco	model:	series
vendor:	cisco	model:	cisco unity
vendor:	cisco	model:	cisco webex meetings
vendor:	cisco	model:	information server
vendor:	cisco	model:	unified_communications_manager
vendor:	cisco	model:	series switches
vendor:	tenda	model:	ac9_firmware
vendor:	tenda	model:	tenda ac9

db:

NVD

ids:

CVE-2021-38493, CVE-2021-40115, CVE-2021-33611, CVE-2021-36172, CVE-2018-6122, CVE-2021-37979, CVE-2021-38497, CVE-2021-37996, CVE-2021-38495, CVE-2021-22960, CVE-2021-37981, CVE-2021-34701, CVE-2021-24808, CVE-2021-20839, CVE-2021-24570, CVE-2021-38424, CVE-2021-38422, CVE-2021-24572, CVE-2020-18438, CVE-2021-40128, CVE-2015-10001, CVE-2021-43324, CVE-2021-40848, CVE-2021-27005, CVE-2021-41313, CVE-2020-25912, CVE-2020-20658, CVE-2021-36185, CVE-2021-36794, CVE-2021-33800, CVE-2020-18259, CVE-2021-38356, CVE-2021-31627, CVE-2021-41973, CVE-2020-20982, CVE-2020-18439, CVE-2020-18263, CVE-2021-38418, CVE-2021-36187, CVE-2021-3440, CVE-2021-1500, CVE-2021-33209, CVE-2021-29875, CVE-2021-24742, CVE-2020-23719, CVE-2021-37980, CVE-2021-41238, CVE-2021-39179, CVE-2021-38496, CVE-2020-35249, CVE-2021-41019, CVE-2021-38501, CVE-2020-25873, CVE-2021-40985, CVE-2021-43281, CVE-2021-24809, CVE-2021-42697, CVE-2020-16048, CVE-2017-5123, CVE-2021-38498, CVE-2021-29737, CVE-2021-38847, CVE-2021-36176, CVE-2021-29993, CVE-2021-38502, CVE-2021-23784, CVE-2021-37978, CVE-2021-38416, CVE-2021-37986, CVE-2021-37992, CVE-2021-29991, CVE-2021-27644, CVE-2021-37995, CVE-2021-24781, CVE-2021-41746, CVE-2021-38492, CVE-2021-43266, CVE-2021-36174, CVE-2021-25973, CVE-2021-37977, CVE-2020-36505, CVE-2021-37149, CVE-2021-41874, CVE-2021-37990, CVE-2021-36184, CVE-2021-29888, CVE-2021-24717, CVE-2021-33259, CVE-2021-36697, CVE-2021-31862, CVE-2021-43338, CVE-2020-25911, CVE-2021-37993, CVE-2021-20135, CVE-2021-20838, CVE-2021-31849, CVE-2021-41645, CVE-2021-43270, CVE-2021-24799, CVE-2021-41312, CVE-2020-21574, CVE-2020-20657, CVE-2021-40126, CVE-2020-36503, CVE-2021-26786, CVE-2021-38948, CVE-2018-6125, CVE-2021-27836, CVE-2020-23754, CVE-2021-41748, CVE-2021-33210, CVE-2021-24757, CVE-2021-37991, CVE-2021-35237, CVE-2021-38500, CVE-2021-41187, CVE-2021-1118, CVE-2020-21573, CVE-2018-25019, CVE-2020-23680, CVE-2021-36808, CVE-2021-42917, CVE-2021-37984, CVE-2020-27820, CVE-2021-41585, CVE-2021-22037, CVE-2020-25872, CVE-2021-34773, CVE-2021-39333, CVE-2021-43141, CVE-2021-41022, CVE-2020-6492, CVE-2021-27722, CVE-2021-3765, CVE-2021-37988, CVE-2021-26107, CVE-2020-25881, CVE-2021-37985, CVE-2021-29738, CVE-2021-1120, CVE-2021-40112, CVE-2020-6931, CVE-2021-38491, CVE-2021-24685, CVE-2021-24770, CVE-2021-25742, CVE-2021-37987, CVE-2021-38161, CVE-2020-21572, CVE-2021-38494, CVE-2021-33593, CVE-2021-21688, CVE-2021-41186, CVE-2020-23109, CVE-2020-26705, CVE-2020-23126, CVE-2020-15935, CVE-2020-36504, CVE-2021-31624, CVE-2021-43058, CVE-2021-41310, CVE-2021-34774, CVE-2021-41675, CVE-2020-21139, CVE-2015-20067, CVE-2021-41174, CVE-2021-32595, CVE-2021-37989, CVE-2021-37994, CVE-2021-37983, CVE-2021-37148, CVE-2021-37147, CVE-2020-23718, CVE-2021-23472, CVE-2021-38499, CVE-2021-37982, CVE-2021-43293, CVE-2021-22038, CVE-2021-38420, CVE-2021-39341

Cisco Patches High-Severity Vulnerabilities in Security Appliances, Business Switches \| SecurityWeek.Com Related entries in the VARIoT vulnerabilities database: VAR-202110-0209, VAR-202110-0093 Trust: 5.5 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 16, 2022, midnight	Vulnerabilities: denial of service, memory corruption, improper memory management...

Affected products

External IDs

vendor:	cisco	model:	link layer discovery protocol
vendor:	cisco	model:	identity services engine
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	dna center
vendor:	cisco	model:	telepresence
vendor:	cisco	model:	anyconnect secure mobility client
vendor:	cisco	model:	series smart switches
vendor:	cisco	model:	web security appliance
vendor:	cisco	model:	roomos
vendor:	cisco	model:	small business
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	cisco identity services engine
vendor:	cisco	model:	asyncos
vendor:	cisco	model:	telepresence ce
vendor:	cisco	model:	ip phone
vendor:	cisco	model:	ios xr
vendor:	cisco	model:	series
vendor:	cisco	model:	email security appliance

db:

NVD

ids:

CVE-2021-34779, CVE-2021-34748, CVE-2021-34735, CVE-2021-1594, CVE-2021-34780, CVE-2021-34710

Cisco : Security vulnerabilities Related entries in the VARIoT vulnerabilities database: VAR-202110-0212, VAR-202110-1376, VAR-202110-1375, VAR-202110-0622, VAR-202110-1298, VAR-202111-0418, VAR-202111-0412, VAR-202109-0617, VAR-202110-1065, VAR-202109-0622, VAR-202110-0583, VAR-202110-1366, VAR-202110-0211, VAR-202111-0413, VAR-202110-0618, VAR-202110-1402, VAR-202110-1350, VAR-202109-0631, VAR-202110-1354, VAR-202109-0624, VAR-202110-0619, VAR-202110-0213, VAR-202111-0393, VAR-202110-1351, VAR-202110-0207, VAR-202110-1367, VAR-202110-1352, VAR-202110-0617, VAR-202110-1392, VAR-202111-0400, VAR-202110-0582, VAR-202111-0419, VAR-202109-0623, VAR-202110-1297, VAR-202110-1394, VAR-202111-0664, VAR-202108-0824, VAR-202110-1353, VAR-202108-0823, VAR-202109-0618, VAR-202110-0203, VAR-202110-0209, VAR-202110-1305, VAR-202110-0623, VAR-202111-0417, VAR-202110-1395, VAR-202110-1286, VAR-202111-0401, VAR-202110-1393, VAR-202110-1377 Trust: 5.25 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 2, 2021, midnight	Vulnerabilities: cross-site request forgery, denial of service, cross-site scripting...

Affected products

External IDs

vendor:	mesh	model:	mesh
vendor:	cisco	model:	cisco evolved programmable network manager
vendor:	cisco	model:	cisco identity services engine
vendor:	cisco	model:	identity services engine
vendor:	cisco	model:	cisco roomos
vendor:	cisco	model:	dna center
vendor:	cisco	model:	meeting
vendor:	cisco	model:	cisco meeting server
vendor:	cisco	model:	small business rv series routers
vendor:	cisco	model:	series routers
vendor:	cisco	model:	cisco anyconnect secure mobility client
vendor:	cisco	model:	firepower
vendor:	cisco	model:	cisco prime infrastructure
vendor:	cisco	model:	common services platform collector
vendor:	cisco	model:	cisco ios xr
vendor:	cisco	model:	webex video mesh
vendor:	cisco	model:	telepresence collaboration endpoint
vendor:	cisco	model:	webex meetings
vendor:	cisco	model:	cisco firepower management center
vendor:	cisco	model:	evolved programmable network manager
vendor:	cisco	model:	cisco telepresence management suite
vendor:	cisco	model:	roomos
vendor:	cisco	model:	cisco meeting
vendor:	cisco	model:	cisco web security appliance
vendor:	cisco	model:	prime infrastructure
vendor:	cisco	model:	telepresence management suite
vendor:	cisco	model:	unified communications manager
vendor:	cisco	model:	meeting server
vendor:	cisco	model:	link layer discovery protocol
vendor:	cisco	model:	web security appliance
vendor:	cisco	model:	anyconnect secure mobility client
vendor:	cisco	model:	cisco ios
vendor:	cisco	model:	firepower threat defense
vendor:	cisco	model:	routers
vendor:	cisco	model:	firepower management center
vendor:	cisco	model:	ios xr software
vendor:	cisco	model:	umbrella
vendor:	cisco	model:	adaptive security appliance
vendor:	cisco	model:	webex
vendor:	cisco	model:	small business
vendor:	cisco	model:	unified communications
vendor:	cisco	model:	telepresence
vendor:	cisco	model:	small business rv
vendor:	cisco	model:	cisco small business
vendor:	cisco	model:	cisco telepresence
vendor:	cisco	model:	unified communications manager session management edition
vendor:	cisco	model:	series
vendor:	cisco	model:	nexus
vendor:	cisco	model:	cisco webex
vendor:	cisco	model:	ios xr
vendor:	cisco	model:	cisco adaptive security appliance
vendor:	cisco	model:	cisco unified communications manager
vendor:	cisco	model:	cisco webex meetings
vendor:	snort	model:	snort

db:

NVD

ids:

CVE-2021-34766, CVE-2021-34793, CVE-2021-34794, CVE-2021-34789, CVE-2021-34755, CVE-2021-34774, CVE-2021-40124, CVE-2021-34785, CVE-2021-34762, CVE-2021-34746, CVE-2021-34738, CVE-2021-34764, CVE-2021-34758, CVE-2021-40120, CVE-2021-40122, CVE-2021-40125, CVE-2021-40118, CVE-2021-34771, CVE-2021-34787, CVE-2021-34765, CVE-2021-40121, CVE-2021-34772, CVE-2021-40126, CVE-2021-40117, CVE-2021-34742, CVE-2021-34763, CVE-2021-40116, CVE-2021-40123, CVE-2021-34791, CVE-2021-40128, CVE-2009-1234, CVE-2021-34743, CVE-2021-34773, CVE-2021-34759, CVE-2021-34756, CVE-2021-34783, CVE-2021-40119, CVE-2021-34749, CVE-2021-40114, CVE-2021-34745, CVE-2021-34786, CVE-2021-34782, CVE-2021-34748, CVE-2021-34761, CVE-2021-34760, CVE-2021-34784, CVE-2021-34781, CVE-2021-34754, CVE-2021-40115, CVE-2021-34790, CVE-2021-34792

Critical macOS Bug Could Allow Threat Actors Install Undetectable Malware In Apple Devices - DNyuz Related entries in the VARIoT vulnerabilities database: VAR-202108-2056 Trust: 4.0 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Nov. 2, 2021, 4:02 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

apple

model:

macos

db:

NVD

ids:

CVE-2021-30892

Identified Vulnerabilities Fixed in Apple + Microsoft Patches Related entries in the VARIoT vulnerabilities database: VAR-202108-2057 Trust: 3.0 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Dec. 20, 2021, midnight	Vulnerabilities: -

Affected products

External IDs

db:

NVD

ids:

CVE-2021-30883

Cisco Unified Communications Products Path Traversal Vulnerability Trust: 5.25 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Nov. 3, 2021, 3:46 p.m.	Vulnerabilities: path traversal

Affected products

External IDs

vendor:

cisco

model:

unified communications

Microsoft warns of nasty new macOS vulnerability with an excellent name \| TechRadar Related entries in the VARIoT vulnerabilities database: VAR-202108-2056 Trust: 4.0 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Oct. 29, 2021, 1:44 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

apple

model:

macos

db:

NVD

ids:

CVE-2021-30892

MITRE, CISA Reveal Dangerous Hardware & Software Vulnerabilities \| eSecurityPlanet Trust: 3.5 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Nov. 4, 2021, 8:10 p.m.	Vulnerabilities: information leak, improper access control

Affected products	External IDs

Emergency Apple iOS 15.0.2 update fixes zero-day used in attacks Related entries in the VARIoT vulnerabilities database: VAR-202109-1315, VAR-202109-1420, VAR-202109-0331, VAR-202109-1313, VAR-202104-0751, VAR-202109-1311, VAR-202108-2057, VAR-202104-0753, VAR-202109-1419, VAR-202109-1307, VAR-202109-1380, VAR-202104-0750, VAR-202109-1316 Trust: 4.5 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Oct. 11, 2021, midnight	Vulnerabilities: memory corruption, code execution

Affected products

External IDs

vendor:	apple	model:	ipad
vendor:	apple	model:	ipad air
vendor:	apple	model:	iphone
vendor:	apple	model:	ipod touch
vendor:	apple	model:	macos

db:

NVD

ids:

CVE-2021-30665, CVE-2021-30762, CVE-2021-1872, CVE-2021-30663, CVE-2021-1871, CVE-2021-30661, CVE-2021-30883, CVE-2021-1879, CVE-2021-30761, CVE-2021-30657, CVE-2021-30713, CVE-2021-1870, CVE-2021-30666

CVE - CVE-2021-1572 Related entries in the VARIoT vulnerabilities database: VAR-202108-0310 Trust: 3.75 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 3, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	cisco systems
vendor:	cisco	model:	series
vendor:	cisco systems	model:	cisco systems
vendor:	cisco systems	model:	series

db:

NVD

ids:

CVE-2021-1572

CVE - CVE-2021-34718 Trust: 3.75 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 3, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	ios xr
vendor:	cisco	model:	cisco ios
vendor:	cisco	model:	ios xr software
vendor:	cisco	model:	cisco systems
vendor:	cisco	model:	cisco ios xr
vendor:	cisco systems	model:	ios xr
vendor:	cisco systems	model:	cisco ios
vendor:	cisco systems	model:	ios xr software
vendor:	cisco systems	model:	cisco systems
vendor:	cisco systems	model:	cisco ios xr

db:

NVD

ids:

CVE-2021-34718

Update Now: Apple Patches iOS, Mac Attack That Uses Malicious PDFs to Hack Devices Related entries in the VARIoT vulnerabilities database: VAR-202108-2172, VAR-202108-1057 Trust: 4.75 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Sept. 13, 2021, 8:49 p.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:	apple	model:	macos
vendor:	apple	model:	iphone
vendor:	apple	model:	webkit
vendor:	apple	model:	safari
vendor:	apple	model:	watchos
vendor:	apple	model:	tvos

db:

NVD

ids:

CVE-2021-30858, CVE-2021-30860

BlackBerry's Cybersecurity Flaw May Affect Your Medical Device \| mddionline.com Trust: 4.0 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Aug. 17, 2021, 8:34 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

blackberry

model:

blackberry

db:

NVD

ids:

CVE-2021-22156

Cisco IP Phone Software Arbitrary File Read Vulnerability - Cisco Related entries in the VARIoT vulnerabilities database: VAR-202110-0201 Trust: 3.75 Fetched: Nov. 9, 2021, 12:59 p.m., Published: Oct. 6, 2021, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	series
vendor:	cisco	model:	wireless ip phone 8821
vendor:	cisco	model:	ip phone 8821
vendor:	cisco	model:	ip phone 7800
vendor:	cisco	model:	ip phone

db:	NVD	ids:	CVE-2021-34711
db:	POSITIVE TECHNOLOGY	ids:	ID:1633536661356243

VARIoT news about IoT security