VARIoT news about IoT security

Latest news

The news are found with our scripts for filtering search results.
Additional information about vulnerabilities, affected products and external identifiers are obtained with NLP and custom filters from found news.

Trust: 6.0

Fetched: June 7, 2023, 9:03 a.m., Published: June 1, 2023, noon
Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: apple model: itunes
db: NVD ids: CVE-2023-32353
Related entries in the VARIoT vulnerabilities database: VAR-202304-2073, VAR-202305-2121, VAR-202305-2285

Trust: 4.75

Fetched: June 7, 2023, 9:03 a.m., Published: May 31, 2023, 2:11 p.m.
Vulnerabilities: command injection, buffer overflow
Affected productsExternal IDs
vendor: zyxel model: zywall
db: NVD ids: CVE-2023-28771, CVE-2023-33009, CVE-2023-33010

Trust: 4.5

Fetched: June 7, 2023, 9:02 a.m., Published: June 1, 2023, 6:23 a.m.
Vulnerabilities: file creation vulnerability, code execution, authentication bypass...
Affected productsExternal IDs
db: NVD ids: CVE-2023-32168, CVE-2023-32169, CVE-2023-32167, CVE-2023-32164, CVE-2023-32165, CVE-2023-32166

Trust: 5.25

Fetched: June 7, 2023, 9:02 a.m., Published: June 5, 2023, midnight
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: google model: android
Related entries in the VARIoT vulnerabilities database: VAR-202305-2121, VAR-202305-2285, VAR-202304-2073

Trust: 6.0

Fetched: June 6, 2023, 9:12 a.m., Published: July 20, 2022, 6 p.m.
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: zyxel model: zywall
db: NVD ids: CVE-2023-33009, CVE-2023-33010, CVE-2023-28771

Trust: 3.25

Fetched: June 6, 2023, 9:11 a.m., Published: May 16, 2023, 4:30 p.m.
Vulnerabilities: sql injection, file enumeration, cross-site scripting...
Affected productsExternal IDs
vendor: google model: home
vendor: google model: android
Related entries in the VARIoT vulnerabilities database: VAR-202301-0521

Trust: 5.5

Fetched: June 6, 2023, 9:10 a.m., Published: June 5, 2023, 10:28 p.m.
Vulnerabilities: denial of service, privilege escalation, information disclosure...
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2022-33264, CVE-2023-21128, CVE-2022-46781, CVE-2023-21669, CVE-2022-40533, CVE-2021-0945, CVE-2023-21131, CVE-2023-21130, CVE-2023-21127, CVE-2023-21123, CVE-2023-21101, CVE-2023-21105, CVE-2022-22706, CVE-2023-21628, CVE-2023-21656, CVE-2023-21126, CVE-2023-21137, CVE-2022-40521, CVE-2023-21136, CVE-2023-21142, CVE-2023-21144, CVE-2023-21658, CVE-2022-22060, CVE-2021-0701, CVE-2023-21121, CVE-2023-21122, CVE-2023-21139, CVE-2022-48438, CVE-2023-21135, CVE-2023-21115, CVE-2022-48392, CVE-2022-40523, CVE-2022-48391, CVE-2022-40529, CVE-2022-40517, CVE-2023-21108, CVE-2023-21143, CVE-2022-33257, CVE-2023-21659, CVE-2022-40536, CVE-2023-21661, CVE-2023-21670, CVE-2022-33251, CVE-2022-33292, CVE-2023-21120, CVE-2022-40520, CVE-2023-21141, CVE-2023-21657, CVE-2023-21138, CVE-2022-28349, CVE-2023-21095, CVE-2022-40538, CVE-2022-48390, CVE-2022-40516, CVE-2023-21129, CVE-2023-21124

Trust: 4.0

Fetched: June 6, 2023, 9:10 a.m., Published: July 20, 2022, 6 p.m.
Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: macos
db: NVD ids: CVE-2023-32369
Related entries in the VARIoT vulnerabilities database: VAR-202203-1898, VAR-202305-2121, VAR-202305-2285, VAR-202304-2073

Trust: 5.75

Fetched: June 6, 2023, 9:09 a.m., Published: June 5, 2023, 7:47 a.m.
Vulnerabilities: buffer overflow, command execution, code execution...
Affected productsExternal IDs
vendor: zyxel model: zywall
db: NVD ids: CVE-2022-0342, CVE-2023-33009, CVE-2023-33010, CVE-2023-28771

Trust: 3.5

Fetched: June 4, 2023, 9:05 a.m., Published: May 30, 2023, 1 a.m.
Vulnerabilities: denial of service, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2023-28348, CVE-2023-28352, CVE-2023-28347, CVE-2023-28345, CVE-2023-28353, CVE-2023-28344, CVE-2023-28351, CVE-2023-28350, CVE-2023-28346, CVE-2023-28349

Trust: 3.5

Fetched: June 4, 2023, 9:04 a.m., Published: May 25, 2023, midnight
Vulnerabilities: sql injection, cross-site scripting, default credentials
Affected productsExternal IDs

Trust: 3.0

Fetched: June 2, 2023, 9:11 a.m., Published: May 25, 2023, 8:04 p.m.
Vulnerabilities: cross-site scripting
Affected productsExternal IDs

Trust: 5.25

Fetched: June 2, 2023, 9:11 a.m., Published: -
Vulnerabilities: command injection, remote command injection
Affected productsExternal IDs
vendor: barracuda networks model: barracuda
vendor: barracuda model: barracuda
db: NVD ids: CVE-2023-2868
Related entries in the VARIoT vulnerabilities database: VAR-202304-2073, VAR-202305-2285, VAR-202305-2121

Trust: 4.75

Fetched: June 2, 2023, 9:11 a.m., Published: May 31, 2023, 2:11 p.m.
Vulnerabilities: buffer overflow, command injection
Affected productsExternal IDs
vendor: zyxel model: zywall
db: NVD ids: CVE-2023-28771, CVE-2023-33010, CVE-2023-33009
Related entries in the VARIoT vulnerabilities database: VAR-202304-2073

Trust: 4.75

Fetched: June 2, 2023, 9:10 a.m., Published: June 1, 2023, midnight
Vulnerabilities: command injection, os command injection, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2023-28771

Trust: 3.25

Fetched: June 2, 2023, 9:09 a.m., Published: May 17, 2023, midnight
Vulnerabilities: sql injection, denial of service
Affected productsExternal IDs
vendor: essential model: phone
vendor: google model: wi-fi router
Related entries in the VARIoT vulnerabilities database: VAR-202304-2073

Trust: 5.75

Fetched: June 2, 2023, 9:08 a.m., Published: June 1, 2023, 11:09 a.m.
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: zyxel model: nas540
vendor: zyxel model: nas542
vendor: zyxel model: nas326
vendor: zyxel model: zywall
db: NVD ids: CVE-2023-28771
Related entries in the VARIoT vulnerabilities database: VAR-202304-2073, VAR-202305-2285, VAR-202305-2121

Trust: 5.75

Fetched: June 2, 2023, 9:07 a.m., Published: June 1, 2023, 4:25 p.m.
Vulnerabilities: buffer overflow, command injection, denial of service...
Affected productsExternal IDs
vendor: zyxel model: zywall
db: NVD ids: CVE-2023-28771, CVE-2023-33010, CVE-2023-33009

Trust: 5.75

Fetched: June 2, 2023, 9:07 a.m., Published: May 31, 2023, 11:47 a.m.
Vulnerabilities: command injection
Affected productsExternal IDs
vendor: zyxel model: nas540
vendor: zyxel model: nas542
vendor: zyxel model: nas326
db: NVD ids: CVE-2023-27988

Trust: 3.0

Fetched: May 31, 2023, 9:15 a.m., Published: May 18, 2023, 8:17 a.m.
Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android