VARIoT news about IoT security

Latest news

The news are found with our scripts for filtering search results.
Additional information about vulnerabilities, affected products and external identifiers are obtained with NLP and custom filters from found news.

Related entries in the VARIoT vulnerabilities database: VAR-202212-1132

Trust: 5.25

Fetched: June 14, 2024, 9:47 a.m., Published: June 11, 2024, 1:24 p.m.
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2022-42475
Related entries in the VARIoT vulnerabilities database: VAR-202212-1132

Trust: 4.75

Fetched: June 14, 2024, 9:46 a.m., Published: June 11, 2024, 10:56 p.m.
Vulnerabilities: buffer overflow
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2022-42475

Trust: 3.75

Fetched: June 14, 2024, 9:46 a.m., Published: June 11, 2024, 4:27 p.m.
Vulnerabilities: -
Affected productsExternal IDs
vendor: roku model: roku ultra
vendor: roku model: ultra
vendor: roku model: roku
vendor: amazon model: fire tv
vendor: apple model: iphone
vendor: apple model: watch
vendor: samsung model: galaxy
vendor: samsung model: samsung galaxy
vendor: google model: pixel
vendor: google model: android
vendor: tesla model: model
vendor: tesla model: model 3
db: NVD ids: CVE-2024-4610, CVE-2023-4211
Related entries in the VARIoT vulnerabilities database: VAR-202203-1978

Trust: 4.25

Fetched: June 14, 2024, 9:29 a.m., Published: June 9, 2024, 12:26 p.m.
Vulnerabilities: security feature bypass, memory corruption, command injection...
Affected productsExternal IDs
vendor: google model: google chrome
vendor: google model: android
vendor: google model: chrome
vendor: cisco model: routers
vendor: cisco model: cisco webex
vendor: cisco model: webex meetings
vendor: cisco model: series
vendor: cisco model: meeting
vendor: cisco model: webex
vendor: cisco model: cisco webex meetings
vendor: zyxel model: nas542
vendor: zyxel model: nas326
db: NVD ids: CVE-2024-24919, CVE-2024-32850, CVE-2024-29974, CVE-2024-4577, CVE-2017-3506, CVE-2024-27822, CVE-2024-29972, CVE-2023-32233, CVE-2024-29973, CVE-2024-4358, CVE-2022-26243
Related entries in the VARIoT vulnerabilities database: VAR-202203-1978

Trust: 5.25

Fetched: June 14, 2024, 9:27 a.m., Published: June 3, 2024, midnight
Vulnerabilities: security feature bypass, memory corruption, command injection...
Affected productsExternal IDs
vendor: google model: google chrome
vendor: google model: android
vendor: google model: chrome
vendor: cisco model: webex meetings
vendor: cisco model: series
vendor: cisco model: meeting
vendor: cisco model: webex
vendor: zyxel model: nas542
vendor: zyxel model: nas326
db: NVD ids: CVE-2024-24919, CVE-2024-32850, CVE-2024-29974, CVE-2024-4577, CVE-2017-3506, CVE-2024-27822, CVE-2024-29972, CVE-2023-32233, CVE-2024-29973, CVE-2024-4358, CVE-2022-26243

Trust: 5.0

Fetched: June 14, 2024, 9:26 a.m., Published: May 21, 2024, 12:23 p.m.
Vulnerabilities: sql injection
Affected productsExternal IDs
db: NVD ids: CVE-2023-3942
Related entries in the VARIoT vulnerabilities database: VAR-202406-0059

Trust: 3.5

Fetched: June 14, 2024, 9:25 a.m., Published: -
Vulnerabilities: -
Affected productsExternal IDs
vendor: siemens model: simatic s7-200 smart cpu st40
vendor: siemens model: simatic
vendor: siemens model: simatic s7-200 smart cpu
vendor: siemens model: simatic s7-200 smart cpu sr30
vendor: siemens model: simatic s7-200 smart
vendor: siemens model: simatic s7-200 smart cpu st30
vendor: siemens model: simatic s7-200 smart cpu st20
vendor: siemens model: simatic s7-200
vendor: siemens model: simatic s7-200 smart cpu sr40
vendor: siemens model: s7-200 smart
vendor: siemens model: simatic s7-200 smart cpu cr60
vendor: siemens model: simatic s7-200 smart cpu sr20
vendor: siemens model: simatic s7-200 smart cpu sr60
vendor: siemens model: simatic s7-200 smart cpu cr40
vendor: siemens model: simatic s7-200 smart cpu st60
db: NVD ids: CVE-2024-35292

Trust: 4.75

Fetched: June 14, 2024, 9:22 a.m., Published: June 12, 2024, 7:06 p.m.
Vulnerabilities: information disclosure, privilege escalation, code execution
Affected productsExternal IDs
vendor: google model: pixel
vendor: google model: android
db: NVD ids: CVE-2024-4610, CVE-2024-32896, CVE-2024-29745, CVE-2024-29748

Trust: 4.25

Fetched: June 14, 2024, 9:21 a.m., Published: June 14, 2024, midnight
Vulnerabilities: information disclosure, code execution, denial of service
Affected productsExternal IDs
vendor: google model: pixel
vendor: google model: android
db: NVD ids: CVE-2023-50803, CVE-2023-43543, CVE-2023-43555, CVE-2024-29781, CVE-2024-32908, CVE-2024-29784, CVE-2024-32915, CVE-2024-32914, CVE-2024-32907, CVE-2024-32912, CVE-2024-29785, CVE-2024-32901, CVE-2024-32922, CVE-2024-32925, CVE-2024-32918, CVE-2024-32909, CVE-2024-32911, CVE-2024-29786, CVE-2024-32921, CVE-2024-29787, CVE-2023-43537, CVE-2024-32924, CVE-2024-32894, CVE-2024-29778, CVE-2024-32930, CVE-2024-32895, CVE-2024-32898, CVE-2024-32897, CVE-2024-32926, CVE-2024-32913, CVE-2024-32917, CVE-2024-32892, CVE-2024-32920, CVE-2024-32903, CVE-2024-32919, CVE-2023-43545, CVE-2024-32900, CVE-2024-32899, CVE-2024-32910, CVE-2024-32893, CVE-2024-32906, CVE-2024-29780, CVE-2024-32916, CVE-2024-32891, CVE-2024-32896, CVE-2024-32904, CVE-2023-43544, CVE-2024-32902, CVE-2024-32923, CVE-2024-32905

Trust: 6.0

Fetched: June 14, 2024, 9:20 a.m., Published: June 13, 2024, 3:43 a.m.
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: google model: pixel
vendor: google model: android
db: NVD ids: CVE-2024-32896

Trust: 4.25

Fetched: June 14, 2024, 9:17 a.m., Published: June 14, 2024, midnight
Vulnerabilities: information disclosure, code execution, denial of service
Affected productsExternal IDs
vendor: motorola model: android
vendor: motorola model: motorola
vendor: huawei model: huawei
vendor: samsung model: mobile
vendor: samsung model: notes
vendor: google model: pixel
vendor: google model: android
vendor: google model: wifi
db: NVD ids: CVE-2024-20069, CVE-2024-31326, CVE-2023-43556, CVE-2024-20065, CVE-2024-31315, CVE-2024-1065, CVE-2024-23711, CVE-2024-23697, CVE-2024-23698, CVE-2024-31324, CVE-2023-21114, CVE-2023-21113, CVE-2024-31312, CVE-2024-31325, CVE-2024-31314, CVE-2024-31313, CVE-2024-31311, CVE-2024-20066, CVE-2024-23363, CVE-2023-43542, CVE-2024-31310, CVE-2024-20068, CVE-2023-43538, CVE-2024-31327, CVE-2024-0671, CVE-2024-23695, CVE-2024-31318, CVE-2023-43551, CVE-2024-31316, CVE-2024-31322, CVE-2024-23696, CVE-2024-20067, CVE-2023-21266, CVE-2024-26926, CVE-2024-31323, CVE-2024-31319, CVE-2024-31317

Trust: 4.0

Fetched: June 14, 2024, 9:10 a.m., Published: June 14, 2023, midnight
Vulnerabilities: memory corruption, code execution, information leakage
Affected productsExternal IDs
db: NVD ids: CVE-2021-27408, CVE-2021-27410

Trust: 3.75

Fetched: June 12, 2024, 9:42 a.m., Published: May 27, 2024, 6:27 a.m.
Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: google chrome
vendor: google model: chrome
db: NVD ids: CVE-2024-5274

Trust: 3.75

Fetched: June 12, 2024, 9:40 a.m., Published: May 28, 2024, 11:13 a.m.
Vulnerabilities: information disclosure
Affected productsExternal IDs
vendor: mikrotik model: routers
vendor: mikrotik model: mikrotik routers

Trust: 3.75

Fetched: June 12, 2024, 9:39 a.m., Published: May 30, 2024, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: tesla model: model

Trust: 3.75

Fetched: June 12, 2024, 9:32 a.m., Published: -
Vulnerabilities: default credentials
Affected productsExternal IDs

Trust: 4.0

Fetched: June 12, 2024, 9:31 a.m., Published: May 13, 2024, 9:26 a.m.
Vulnerabilities: session hijacking
Affected productsExternal IDs

Trust: 3.0

Fetched: June 12, 2024, 9:30 a.m., Published: May 28, 2024, 10:26 a.m.
Vulnerabilities: denial of service
Affected productsExternal IDs

Trust: 4.0

Fetched: June 12, 2024, 9:30 a.m., Published: June 2, 2024, midnight
Vulnerabilities: pointer dereference vulnerability, command injection
Affected productsExternal IDs
db: NVD ids: CVE-2024-29948, CVE-2024-29947, CVE-2024-29949
Related entries in the VARIoT vulnerabilities database: VAR-202404-0070

Trust: 5.5

Fetched: June 12, 2024, 9:29 a.m., Published: April 4, 2024, 3:37 p.m.
Vulnerabilities: denial of service, command execution, command injection...
Affected productsExternal IDs
vendor: d-link model: dns-327l
vendor: d-link model: dns-320l
vendor: d-link model: dns-340l
vendor: d-link model: dns-325
db: NVD ids: CVE-2024-3273