VARIoT latest news about IoT security

Update now! Google patches Android vulnerability that allows remote code execution over Bluetooth : spixnet_gmbh_official Trust: 4.5 Fetched: Dec. 21, 2022, 9:23 a.m., Published: March 21, 2022, midnight	Vulnerabilities: code execution

Affected products

External IDs

vendor:

google

model:

android

Cisco Reports Critical IP Phone Vulnerability \| Absolute Computer Systems LLC Related entries in the VARIoT vulnerabilities database: VAR-202212-0864 Trust: 4.5 Fetched: Dec. 21, 2022, 9:22 a.m., Published: -	Vulnerabilities: denial of service, code execution

Affected products

External IDs

vendor:	cisco	model:	series
vendor:	cisco	model:	ip phone 7800
vendor:	cisco	model:	ip phone
vendor:	cisco	model:	link layer discovery protocol

db:

NVD

ids:

CVE-2022-20968

Apple iPhone and iPad users, here’s why you should install the latest update on your devices - Times of India Trust: 4.75 Fetched: Dec. 21, 2022, 9:21 a.m., Published: Dec. 21, 2063, midnight	Vulnerabilities: denial of service

Affected products

External IDs

vendor:	apple	model:	safari
vendor:	apple	model:	ipad
vendor:	apple	model:	iphone
vendor:	apple	model:	itunes
vendor:	apple	model:	ipad air
vendor:	apple	model:	webkit

NSA says Chinese hackers are actively attacking flaw in widely used networking device - CyberScoop - JN-66 Data Analytics Trust: 4.75 Fetched: Dec. 21, 2022, 9:21 a.m., Published: Dec. 14, 2022, 12:15 a.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:

citrix

model:

application delivery controller

Cisco Reports Critical IP Phone Vulnerability \| Chicago Microsystems, Inc. \| IT Support Services in Chicago and Lake County, IL Related entries in the VARIoT vulnerabilities database: VAR-202212-0864 Trust: 4.5 Fetched: Dec. 21, 2022, 9:20 a.m., Published: -	Vulnerabilities: denial of service, code execution

Affected products

External IDs

vendor:	cisco	model:	series
vendor:	cisco	model:	ip phone 7800
vendor:	cisco	model:	ip phone
vendor:	cisco	model:	link layer discovery protocol

db:

NVD

ids:

CVE-2022-20968

Apple users urged to update devices after cyber attacks on iPads and older iPhones , Latest Tech News - The New Paper Trust: 3.0 Fetched: Dec. 21, 2022, 9:20 a.m., Published: Dec. 15, 2022, 9:10 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	apple	model:	safari
vendor:	apple	model:	ipad
vendor:	apple	model:	iphone
vendor:	apple	model:	ipod touch
vendor:	apple	model:	webkit
vendor:	apple	model:	ipad air

Hackers Score Nearly $1M at Device-Focused Pwn2Own Contest Trust: 3.75 Fetched: Dec. 21, 2022, 9:19 a.m., Published: Dec. 13, 2022, 3:10 p.m.	Vulnerabilities: memory corruption

Affected products

External IDs

vendor:	tp-link	model:	routers
vendor:	lexmark	model:	printer
vendor:	lexmark	model:	lexmark printer
vendor:	trend	model:	security
vendor:	samsung	model:	galaxy
vendor:	samsung	model:	mobile
vendor:	samsung	model:	samsung galaxy
vendor:	samsung	model:	printer
vendor:	samsung	model:	printers
vendor:	trend micro	model:	security

Security Risks, Serious Vulnerabilities Rampant Among XIoT Devices in the Workplace - CPO Magazine Trust: 3.25 Fetched: Dec. 21, 2022, 9:18 a.m., Published: Dec. 16, 2022, 6:25 a.m.	Vulnerabilities: privilege escalation, weak password, default password

Affected products

External IDs

vendor:	huawei	model:	huawei
vendor:	trend	model:	security

Cisco Reports Critical IP Phone Vulnerability \| Natural Networks, Inc. Related entries in the VARIoT vulnerabilities database: VAR-202212-0864 Trust: 4.5 Fetched: Dec. 21, 2022, 9:17 a.m., Published: -	Vulnerabilities: denial of service, code execution

Affected products

External IDs

vendor:	cisco	model:	series
vendor:	cisco	model:	ip phone 7800
vendor:	cisco	model:	ip phone
vendor:	cisco	model:	link layer discovery protocol

db:

NVD

ids:

CVE-2022-20968

Microsoft: Popular IoT SDKs Leave Critical Infrastructure Wide Open to Cyberattack Trust: 4.75 Fetched: Dec. 21, 2022, 9:17 a.m., Published: Nov. 23, 2022, 5:02 p.m.	Vulnerabilities: information disclosure

Affected products

External IDs

vendor:

realtek

model:

realtek sdk

db:

NVD

ids:

CVE-2021-35395, CVE-2017-9833, CVE-2021-33558, CVE-2022-27255

Cisco Reports Critical IP Phone Vulnerability \| Saggio Technology Related entries in the VARIoT vulnerabilities database: VAR-202212-0864 Trust: 4.5 Fetched: Dec. 21, 2022, 9:16 a.m., Published: -	Vulnerabilities: denial of service, code execution

Affected products

External IDs

vendor:	cisco	model:	series
vendor:	cisco	model:	ip phone 7800
vendor:	cisco	model:	ip phone
vendor:	cisco	model:	link layer discovery protocol

db:

NVD

ids:

CVE-2022-20968

A Malicious Android SMS Application Hijacks Victims' Devices Using an SMS Relay. Trust: 4.0 Fetched: Dec. 20, 2022, 9:28 a.m., Published: Dec. 20, 2022, midnight	Vulnerabilities: privilege escalation

Affected products

External IDs

vendor:

google

model:

android

Cisco Reports Critical IP Phone Vulnerability \| Computer Networks, Inc. Related entries in the VARIoT vulnerabilities database: VAR-202212-0864 Trust: 4.5 Fetched: Dec. 20, 2022, 9:28 a.m., Published: -	Vulnerabilities: code execution, denial of service

Affected products

External IDs

vendor:	cisco	model:	ip phone
vendor:	cisco	model:	ip phone 7800
vendor:	cisco	model:	link layer discovery protocol
vendor:	cisco	model:	series

db:

NVD

ids:

CVE-2022-20968

Cisco Reports Critical IP Phone Vulnerability \| The Best Geeks Related entries in the VARIoT vulnerabilities database: VAR-202212-0864 Trust: 4.5 Fetched: Dec. 20, 2022, 9:28 a.m., Published: -	Vulnerabilities: code execution, denial of service

Affected products

External IDs

vendor:	cisco	model:	ip phone
vendor:	cisco	model:	ip phone 7800
vendor:	cisco	model:	link layer discovery protocol
vendor:	cisco	model:	series

db:

NVD

ids:

CVE-2022-20968

Samsung December 2022 security update: Eligible devices, vulnerabilities fixed and more Trust: 3.0 Fetched: Dec. 20, 2022, 9:27 a.m., Published: Dec. 6, 2022, 2:03 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

samsung

model:

galaxy

Cisco Reports Critical IP Phone Vulnerability \| DenaliTEK Incorporated Related entries in the VARIoT vulnerabilities database: VAR-202212-0864 Trust: 4.5 Fetched: Dec. 20, 2022, 9:27 a.m., Published: -	Vulnerabilities: code execution, denial of service

Affected products

External IDs

vendor:	cisco	model:	ip phone
vendor:	cisco	model:	ip phone 7800
vendor:	cisco	model:	link layer discovery protocol
vendor:	cisco	model:	series

db:

NVD

ids:

CVE-2022-20968

Cisco Reports Critical IP Phone Vulnerability \| Premier Technologies Related entries in the VARIoT vulnerabilities database: VAR-202212-0864 Trust: 4.5 Fetched: Dec. 20, 2022, 9:26 a.m., Published: -	Vulnerabilities: code execution, denial of service

Affected products

External IDs

vendor:	cisco	model:	ip phone
vendor:	cisco	model:	ip phone 7800
vendor:	cisco	model:	link layer discovery protocol
vendor:	cisco	model:	series

db:

NVD

ids:

CVE-2022-20968

Cisco Reports Critical IP Phone Vulnerability \| Passkey Technology Related entries in the VARIoT vulnerabilities database: VAR-202212-0864 Trust: 4.5 Fetched: Dec. 20, 2022, 9:26 a.m., Published: -	Vulnerabilities: code execution, denial of service

Affected products

External IDs

vendor:	cisco	model:	ip phone
vendor:	cisco	model:	ip phone 7800
vendor:	cisco	model:	link layer discovery protocol
vendor:	cisco	model:	series

db:

NVD

ids:

CVE-2022-20968

Cisco Reports Critical IP Phone Vulnerability \| The NIC GROUP INC. Related entries in the VARIoT vulnerabilities database: VAR-202212-0864 Trust: 4.5 Fetched: Dec. 20, 2022, 9:26 a.m., Published: -	Vulnerabilities: code execution, denial of service

Affected products

External IDs

vendor:	cisco	model:	ip phone
vendor:	cisco	model:	ip phone 7800
vendor:	cisco	model:	link layer discovery protocol
vendor:	cisco	model:	series

db:

NVD

ids:

CVE-2022-20968

Cisco Reports Critical IP Phone Vulnerability \| Logical Business Solutions Inc. Related entries in the VARIoT vulnerabilities database: VAR-202212-0864 Trust: 4.5 Fetched: Dec. 20, 2022, 9:25 a.m., Published: -	Vulnerabilities: code execution, denial of service

Affected products

External IDs

vendor:	cisco	model:	ip phone
vendor:	cisco	model:	ip phone 7800
vendor:	cisco	model:	link layer discovery protocol
vendor:	cisco	model:	series

db:

NVD

ids:

CVE-2022-20968

VARIoT news about IoT security