Sign-up

VARIoT news about IoT security

Multiple vulnerabilities in Eclipse ThreadX - System32

Trust: 3.5

Fetched: May 28, 2024, 9:25 a.m., Published: May 28, 2024, 3:28 a.m.
 Vulnerabilities: buffer overflow, memory corruption, code execution...
Affected productsExternal IDs
db: NVD ids: CVE-2024-2212, CVE-2024-2452, CVE-2024-2214

Cisco Firepower Management Center Software Object Group Access Control List Bypass Vulnerability

Trust: 3.0

Fetched: May 28, 2024, 9:24 a.m., Published: May 22, 2024, 3:57 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: firepower
vendor: cisco model: cisco firepower management center
vendor: cisco model: asa software
vendor: cisco model: firepower management center

CVE-2021-47517 - vulnerability database | Vulners.com

Trust: 3.0

Fetched: May 28, 2024, 9:20 a.m., Published: May 27, 2024, 11:02 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-47517

8 Best Penetration Testing Tools for 2024

Trust: 4.75

Fetched: May 28, 2024, 9:17 a.m., Published: May 23, 2024, 1 p.m.
 Vulnerabilities: sql injection
Affected productsExternal IDs
vendor: wireshark model: wireshark

Vulnerability in TP-Link gaming routers exposes users to remote code attacks - neznew.com

Trust: 6.0

Fetched: May 28, 2024, 9:15 a.m., Published: May 28, 2024, 7:52 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: tp-link model: routers
db: NVD ids: CVE-2024-3871, CVE-2024-5035, CVE-2024-4999

12 Best Penetration Testing Tools for 2024 - Reviews & Links (Paid & Free)

Trust: 3.25

Fetched: May 28, 2024, 9:14 a.m., Published: June 27, 2019, 1:35 p.m.
 Vulnerabilities: sql injection, cross-site scripting
Affected productsExternal IDs
vendor: perl model: perl
vendor: wireshark model: wireshark

The Top 10 Mobile Device Management (MDM) Solutions | Expert Insights

Trust: 4.5

Fetched: May 28, 2024, 9:11 a.m., Published: Jan. 19, 2024, 3:58 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: cisco model: cisco webex
vendor: cisco model: webex
vendor: cisco model: webex teams
vendor: cisco model: cisco webex teams
vendor: google model: wifi
vendor: google model: android

CVE-2024-5096 - Exploits & Severity - Feedly

Trust: 6.0

Fetched: May 26, 2024, 9:22 a.m., Published: May 19, 2024, midnight
 Vulnerabilities: information disclosure
Affected productsExternal IDs
vendor: trend model: security
db: NVD ids: CVE-2024-5096

Microsoft May 2024 Patch Tuesday Highlights: 61 CVEs, Actively Exploited Zero-Days (CVE-2024-30051, CVE-2024-30040) - SOCRadar® Cyber Intelligence Inc.

Trust: 4.5

Fetched: May 26, 2024, 9:21 a.m., Published: May 15, 2024, 10:48 a.m.
 Vulnerabilities: feature bypass, code execution, security feature bypass...
Affected productsExternal IDs
db: NVD ids: CVE-2024-30038, CVE-2024-29996, CVE-2024-30037, CVE-2024-30034, CVE-2024-30035, CVE-2024-30032, CVE-2024-30040, CVE-2024-30049, CVE-2024-30050, CVE-2024-30051, CVE-2024-30025, CVE-2024-30044

Multiple Cisco Products Snort 3 HTTP Intrusion Prevention System Rule Bypass Vulnerability

Trust: 3.75

Fetched: May 26, 2024, 9:20 a.m., Published: May 22, 2024, 3:57 p.m.
 Vulnerabilities: rule bypass
Affected productsExternal IDs
vendor: snort model: snort
vendor: cisco model: 1000v
vendor: cisco model: sd-wan
vendor: cisco model: integrated services routers
vendor: cisco model: cisco ios xe
vendor: cisco model: series
vendor: cisco model: umbrella
vendor: cisco model: router
vendor: cisco model: adaptive security appliance
vendor: cisco model: firepower management center
vendor: cisco model: series integrated services routers
vendor: cisco model: cisco ios
vendor: cisco model: intrusion prevention system
vendor: cisco model: ios xe
vendor: cisco model: ios xe sd-wan software
vendor: cisco model: firepower threat defense
vendor: cisco model: firepower threat defense software
vendor: cisco model: routers
vendor: cisco model: catalyst
vendor: cisco model: firepower
vendor: cisco model: integrated services virtual router
vendor: cisco model: ios xe software

F5 Central Manager Vulnerabilities Enable Full Device Takeover

Trust: 3.75

Fetched: May 26, 2024, 9:18 a.m., Published: May 13, 2024, 7:08 a.m.
 Vulnerabilities: request forgery, sql injection
Affected productsExternal IDs
db: NVD ids: CVE-2024-21793, CVE-2024-26026

CVE-2021-47327 iommu/arm-smmu: Fix arm_smmu_device refcount ... - vulnerability database | Vulners.com

Trust: 4.25

Fetched: May 26, 2024, 9:18 a.m., Published: May 21, 2024, 2:35 p.m.
 Vulnerabilities: reference counting issue
Affected productsExternal IDs
db: NVD ids: CVE-2021-47327

CVE-2023-52774 s390/dasd: protect device queue against concu... - vulnerability database | Vulners.com

Trust: 4.25

Fetched: May 26, 2024, 9:18 a.m., Published: May 21, 2024, 3:30 p.m.
 Vulnerabilities: kernel panic
Affected productsExternal IDs
db: NVD ids: CVE-2023-52774

CVE-2023-52784 - vulnerability database | Vulners.com

Trust: 3.0

Fetched: May 26, 2024, 9:17 a.m., Published: May 21, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2023-52784

CVE-2024-5291 D-Link DIR-2150 GetDeviceSettings Target Comma... - vulnerability database | Vulners.com

Related entries in the VARIoT vulnerabilities database: VAR-202405-0178

Trust: 5.0

Fetched: May 26, 2024, 9:16 a.m., Published: May 23, 2024, 9:29 p.m.
 Vulnerabilities: command injection, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2024-5291

CVE-2023-52864 platform/x86: wmi: Fix opening of char device - vulnerability database | Vulners.com

Trust: 5.25

Fetched: May 26, 2024, 9:16 a.m., Published: May 21, 2024, 3:31 p.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
db: NVD ids: CVE-2023-52864

Putting More Cure In Secure With Medical IoT Security - Palo Alto Networks Blog

Trust: 3.5

Fetched: May 26, 2024, 9:15 a.m., Published: May 20, 2024, 10:19 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: palo alto networks model: firewall
vendor: palo alto networks model: networks
vendor: palo model: firewall
vendor: palo model: networks

CVE-2024-0816 - The buffer overflow vulnerability in the DX3300-T1

Trust: 4.75

Fetched: May 26, 2024, 9:14 a.m., Published: May 21, 2024, 2:15 a.m.
 Vulnerabilities: buffer overflow, denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2024-0816

An analysis of IoT and the vulnerability of data theft - iPleaders

Trust: 3.75

Fetched: May 26, 2024, 9:14 a.m., Published: May 14, 2024, 12:46 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: smarter model: coffee

CVE-2024-20361 - A vulnerability in the Object Groups for Access Co

Trust: 3.75

Fetched: May 26, 2024, 9:12 a.m., Published: May 22, 2024, 5:16 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco systems model: firepower threat defense
vendor: cisco systems model: firepower management center
vendor: cisco systems model: firepower
vendor: cisco systems model: cisco firepower management center
vendor: cisco model: firepower threat defense
vendor: cisco model: firepower management center
vendor: cisco model: firepower
vendor: cisco model: cisco firepower management center
db: NVD ids: CVE-2024-20361