VARIoT latest news about IoT security

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers Trust: 3.5 Fetched: Nov. 29, 2022, 9:11 a.m., Published: Feb. 26, 2000, midnight	Vulnerabilities: request forgery, cross-site request forgery

Affected products	External IDs

What Are The Benefits Of Using Vulnerability Management Software - Analytic Searches Trust: 3.0 Fetched: Nov. 27, 2022, 9:20 a.m., Published: Nov. 23, 2022, 7:03 p.m.	Vulnerabilities: denial of service

Affected products	External IDs

Tips For Using Vulnerability Management Software Successfully - Infosem Trust: 3.75 Fetched: Nov. 27, 2022, 9:18 a.m., Published: Nov. 23, 2022, 7:08 p.m.	Vulnerabilities: denial of service

Affected products

External IDs

vendor:

trend

model:

security

Google exposes active Android vulnerability affecting Mali GPUs Trust: 3.75 Fetched: Nov. 27, 2022, 9:18 a.m., Published: Nov. 25, 2022, 4:48 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	android
vendor:	google	model:	pixel
vendor:	samsung	model:	samsung galaxy
vendor:	samsung	model:	exynos
vendor:	samsung	model:	galaxy

db:

NVD

ids:

CVE-2022-33917, CVE-2022-36449

Millions Of Android Devices Running On Mali GPU Are Vulnerable To Attacks, And You Can’t Fix It - Tech Trust: 3.75 Fetched: Nov. 27, 2022, 9:18 a.m., Published: Nov. 25, 2022, 11:35 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	motorola	model:	android
vendor:	motorola	model:	motorola
vendor:	xiaomi	model:	redmi
vendor:	google	model:	pixel
vendor:	google	model:	android
vendor:	asus	model:	asus
vendor:	samsung	model:	note
vendor:	samsung	model:	samsung galaxy
vendor:	samsung	model:	galaxy
vendor:	samsung	model:	galaxy s10
vendor:	samsung	model:	note 10
vendor:	samsung	model:	galaxy s9
vendor:	samsung	model:	galaxy note
vendor:	samsung	model:	galaxy s7
vendor:	huawei	model:	huawei mate
vendor:	huawei	model:	huawei p30
vendor:	huawei	model:	mate
vendor:	huawei	model:	honor view 20
vendor:	huawei	model:	mate 8
vendor:	huawei	model:	huawei
vendor:	huawei	model:	honor
vendor:	huawei	model:	view 20

db:

NVD

ids:

CVE-2022-33917, CVE-2022-36449

Alert! Millions of Android devices prone to hacking due to GPU bug: Google's Project Zero Team Trust: 3.75 Fetched: Nov. 27, 2022, 9:17 a.m., Published: Nov. 27, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	android
vendor:	google	model:	pixel
vendor:	samsung	model:	galaxy

db:

NVD

ids:

CVE-2022-36449

Microsoft CVE-2022-41055: Windows Human Interface Device Information Disclosure Vulnerability Trust: 3.5 Fetched: Nov. 27, 2022, 9:17 a.m., Published: Nov. 4, 2022, midnight	Vulnerabilities: information disclosure

Affected products

External IDs

db:

NVD

ids:

CVE-2022-41055

Top Emerging Cybersecurity Threats and Defensive Mechanism to be Safe \| HackerNoon Trust: 3.5 Fetched: Nov. 27, 2022, 9:16 a.m., Published: Nov. 19, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	essential	model:	phone
vendor:	google	model:	android
vendor:	trend	model:	antivirus
vendor:	trend	model:	security
vendor:	apple	model:	iphone

CISA Tells Organizations to Patch Linux Kernel Vulnerability Exploited by Malware \| SecurityWeek.Com Trust: 4.0 Fetched: Nov. 27, 2022, 9:13 a.m., Published: Nov. 27, 2022, midnight	Vulnerabilities: privilege escalation

Affected products

External IDs

db:

NVD

ids:

CVE-2021-3493, CVE-2021-4034

How works Microsoft Defender Vulnerability Management (MDVM) Trust: 4.75 Fetched: Nov. 27, 2022, 9:12 a.m., Published: Nov. 21, 2022, 2:17 p.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:	trend	model:	endpoint sensor
vendor:	trend	model:	password manager
vendor:	trend	model:	antivirus
vendor:	trend	model:	security

db:

NVD

ids:

CVE-2022-30190

Google Patches the Seventh Zero-Day Chrome Vulnerability of 2022 \| Spiceworks 1 Related entries in the VARIoT vulnerabilities database: VAR-202205-1370 Trust: 5.25 Fetched: Nov. 27, 2022, 9:11 a.m., Published: Nov. 2, 2022, midnight	Vulnerabilities: buffer overflow, code execution

Affected products

External IDs

vendor:	google	model:	chrome
vendor:	google	model:	google chrome

db:

NVD

ids:

CVE-2022-3723, CVE-2022-1096, CVE-2022-2856, CVE-2022-1364, CVE-2022-2294, CVE-2022-0609, CVE-2022-3075

Siemens LOGO! 8 BM Devices \| CISA Related entries in the VARIoT vulnerabilities database: VAR-202210-0505, VAR-202210-0503, VAR-202210-0504 Trust: 3.75 Fetched: Nov. 27, 2022, 9:10 a.m., Published: Nov. 8, 2022, midnight	Vulnerabilities: improper validation

Affected products

External IDs

db:

NVD

ids:

CVE-2022-36363, CVE-2022-36362, CVE-2022-36361

Google's Project Zero found exploitable vulnerabilities Trust: 3.75 Fetched: Nov. 25, 2022, 9:33 a.m., Published: Nov. 24, 2022, 2:55 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	android
vendor:	samsung	model:	android phone

db:

NVD

ids:

CVE-2021-25370, CVE-2021-25369, CVE-2021-25337

What Vulnerability Management Software Is And What It Does - Iredell Humane Trust: 3.0 Fetched: Nov. 25, 2022, 9:31 a.m., Published: Nov. 23, 2022, 7:06 p.m.	Vulnerabilities: denial of service

Affected products	External IDs

What Vulnerability Management Software Is And What It Does - Dogs n Sox Trust: 3.0 Fetched: Nov. 25, 2022, 9:30 a.m., Published: Nov. 23, 2022, 6:54 p.m.	Vulnerabilities: denial of service

Affected products	External IDs

What Are The Benefits Of Using Vulnerability Management Software - BH Polo Trust: 3.0 Fetched: Nov. 25, 2022, 9:29 a.m., Published: Nov. 23, 2022, 7:08 p.m.	Vulnerabilities: denial of service

Affected products	External IDs

Mali GPU driver vulnerability affects many devices - The Vocal Vixen Trust: 4.0 Fetched: Nov. 25, 2022, 9:26 a.m., Published: Nov. 25, 2022, 12:32 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

google

model:

android

db:

NVD

ids:

CVE-2022-33917

Patch Gap issues puts millions of Android devices to vulnerability \| IT Security News Trust: 3.75 Fetched: Nov. 25, 2022, 9:26 a.m., Published: Nov. 25, 2022, 5:37 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	android
vendor:	google	model:	pixel

db:

NVD

ids:

CVE-2021-28372

Cisco Patches 33 Vulnerabilities in Enterprise Firewall Products \| SecurityWeek.Com Related entries in the VARIoT vulnerabilities database: VAR-202211-1257, VAR-202211-0550 Trust: 4.5 Fetched: Nov. 25, 2022, 9:26 a.m., Published: Nov. 25, 2033, midnight	Vulnerabilities: improper memory management, cross-site scripting, default credentials

Affected products

External IDs

vendor:	citrix	model:	gateway
vendor:	cisco	model:	firepower
vendor:	cisco	model:	adaptive security appliance
vendor:	cisco	model:	cisco adaptive security appliance
vendor:	cisco	model:	series
vendor:	cisco	model:	firepower management center
vendor:	cisco	model:	firepower threat defense

db:

NVD

ids:

CVE-2022-20946, CVE-2022-20927

Fortinet Confirms Zero-Day Vulnerability Exploited in One Attack \| SecurityWeek.Com Related entries in the VARIoT vulnerabilities database: VAR-202210-0198 Trust: 6.25 Fetched: Nov. 25, 2022, 9:24 a.m., Published: Nov. 25, 2022, midnight	Vulnerabilities: authentication bypass

Affected products

External IDs

vendor:

fortigate

model:

fortios

db:

NVD

ids:

CVE-2022-40684

VARIoT news about IoT security