Sign-up

VARIoT news about IoT security

One of the worst security vulnerabilities to ever hit Windows is now fixed

Trust: 3.25

Fetched: July 27, 2024, 7:58 p.m., Published: July 12, 2024, 9:27 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2023-24932

What is Metasploit: Overview, Framework, and How is it Used | Simplilearn

Trust: 3.5

Fetched: July 27, 2024, 7:56 p.m., Published: Nov. 25, 2021, 7:46 a.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: wireshark model: wireshark
vendor: perl model: perl

CVE - Search Results

Related entries in the VARIoT vulnerabilities database: VAR-201203-0144, VAR-200611-0102, VAR-201203-0367, VAR-201203-0381

Trust: 5.25

Fetched: July 27, 2024, 7:55 p.m., Published: Aug. 24, 2030, midnight
 Vulnerabilities: denial of service, system crash, file execution...
Affected productsExternal IDs
vendor: trend model: trend micro housecall
vendor: trend model: trend micro antivirus
vendor: trend model: virusbuster
vendor: trend model: internet security
vendor: trend model: housecall
vendor: trend model: security
vendor: trend model: micro housecall
vendor: trend model: password manager
vendor: trend model: antivirus
vendor: sophos model: mobile
vendor: sophos model: anti-virus
vendor: sophos model: endpoint protection
vendor: sophos model: sophos anti-virus
vendor: norman model: norman antivirus
vendor: norman model: antivirus
vendor: rising model: antivirus
vendor: rising model: rising antivirus
vendor: clamav model: clamav
vendor: esafe model: antivirus
vendor: emsisoft model: anti-malware
vendor: emsisoft model: antivirus
vendor: emsisoft model: emsisoft anti-malware
vendor: ahnlab model: v3 internet security
vendor: ahnlab model: engine
vendor: avira model: antivir
vendor: avira model: antivirus
vendor: antiy labs model: avl sdk
vendor: trend micro model: trend micro housecall
vendor: trend micro model: trend micro antivirus
vendor: trend micro model: virusbuster
vendor: trend micro model: internet security
vendor: trend micro model: housecall
vendor: trend micro model: security
vendor: trend micro model: micro housecall
vendor: trend micro model: password manager
vendor: trend micro model: antivirus
vendor: nprotect model: anti-virus
vendor: nprotect model: nprotect anti-virus
vendor: nprotect model: antivirus
vendor: ikarus model: virus utilities t3 command line scanner
vendor: ikarus model: ikarus virus utilities t3 command line scanner
vendor: alwil model: avast antivirus
vendor: comodo model: internet security
vendor: comodo model: comodo antivirus
vendor: comodo model: antivirus
vendor: jiangmin model: jiangmin antivirus
vendor: jiangmin model: jiangmin
vendor: jiangmin model: antivirus
vendor: quick heal model: quick heal
vendor: symantec model: symantec endpoint protection
vendor: symantec model: norton
vendor: symantec model: endpoint protection
vendor: symantec model: antivirus
vendor: antiy model: avl sdk
vendor: f-prot model: f-prot antivirus
vendor: avast model: antivirus home
vendor: avast model: anti-virus
vendor: avast model: antivirus
db: NVD ids: CVE-2016-4025, CVE-2023-1585, CVE-2020-10864, CVE-2022-28965, CVE-2016-3986, CVE-2019-17093, CVE-2021-45337, CVE-2021-45336, CVE-2009-4049, CVE-2023-5760, CVE-2023-1587, CVE-2021-27241, CVE-2012-1459, CVE-2020-13657, CVE-2005-2385, CVE-2020-9399, CVE-2010-5075, CVE-2020-10865, CVE-2024-5102, CVE-2009-3524, CVE-2005-2384, CVE-2017-8307, CVE-2018-12572, CVE-2006-5745, CVE-2019-18893, CVE-2023-1586, CVE-2020-10863, CVE-2007-0829, CVE-2020-25289, CVE-2005-1719, CVE-2005-1770, CVE-2022-28964, CVE-2006-1892, CVE-2020-10860, CVE-2010-3126, CVE-2020-10862, CVE-2008-5313, CVE-2005-3214, CVE-2006-4626, CVE-2010-5151, CVE-2008-1625, CVE-2019-17190, CVE-2009-3522, CVE-2020-10867, CVE-2006-2869, CVE-2010-0705, CVE-2019-18894, CVE-2017-8308, CVE-2021-45335, CVE-2017-5567, CVE-2022-4291, CVE-2015-5662, CVE-2022-4294, CVE-2012-1443, CVE-2020-8987, CVE-2019-11230, CVE-2020-20118, CVE-2007-1672, CVE-2008-6846, CVE-2007-2846, CVE-2023-42124, CVE-2020-15024, CVE-2008-5523, CVE-2013-0122, CVE-2022-4173, CVE-2023-42125, CVE-2021-45338, CVE-2020-10861, CVE-2020-10868, CVE-2021-45339, CVE-2006-1355, CVE-2009-3523, CVE-2012-1457, CVE-2020-10866, CVE-2007-6265, CVE-2007-2845, CVE-2019-18653, CVE-2015-8620

NHS England Issues Cyber Alert for Exploited CVE-2023-6548 Vulnerability in NetScaler Devices

Related entries in the VARIoT vulnerabilities database: VAR-202401-2573

Trust: 6.0

Fetched: July 27, 2024, 7:54 p.m., Published: July 20, 2024, 1:45 a.m.
 Vulnerabilities: code injection
Affected productsExternal IDs
vendor: citrix model: netscaler gateway
vendor: citrix model: netscaler
vendor: citrix model: gateway
vendor: citrix model: netscaler adc
db: NVD ids: CVE-2023-6548

Emerging Threats in Cybersecurity for 2024 - Bangalore

Trust: 3.5

Fetched: July 27, 2024, 7:53 p.m., Published: July 17, 2024, 3:20 p.m.
 Vulnerabilities: denial of service, information manipulation, service disruption
Affected productsExternal IDs

CVE - CVE-2014-8652

Related entries in the VARIoT vulnerabilities database: VAR-201411-0175

Trust: 3.25

Fetched: July 27, 2024, 7:53 p.m., Published: Aug. 24, 2030, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2014-8652

CVE-2022-48808 net: dsa: fix panic when DSA master device un... - vulnerability database | Vulners.com

Trust: 3.0

Fetched: July 27, 2024, 7:52 p.m., Published: July 16, 2024, 11:43 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2022-48808

How to Address IoT Security Vulnerabilities - HogoNext

Trust: 4.5

Fetched: July 27, 2024, 7:49 p.m., Published: July 18, 2024, 12:29 p.m.
 Vulnerabilities: default password
Affected productsExternal IDs

Hikvision Video Recorders Out-of-bounds Read (CVE-2024-29949) - vulnerability database | Vulners.com

Trust: 3.0

Fetched: July 27, 2024, 7:48 p.m., Published: July 22, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2024-29949

700,000 OpenSSH servers vulnerable to remote code execution CVE | Cybersecurity Dive

Trust: 4.25

Fetched: July 27, 2024, 7:47 p.m., Published: July 1, 2024, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2024-6387, CVE-2006-5051

CVE - CVE-2020-3396

Trust: 3.75

Fetched: July 27, 2024, 7:46 p.m., Published: Aug. 24, 2030, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco systems model: ios xe
vendor: cisco systems model: cisco ios
vendor: cisco systems model: ios xe software
vendor: cisco systems model: cisco ios xe
vendor: cisco model: ios xe
vendor: cisco model: cisco ios
vendor: cisco model: ios xe software
vendor: cisco model: cisco ios xe
db: NVD ids: CVE-2020-3396

Configure Microsoft Defender for Endpoint on iOS features - Microsoft Defender for Endpoint | Microsoft Learn

Trust: 3.0

Fetched: July 27, 2024, 7:43 p.m., Published: July 22, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad

🎯🖥️ How ‘Anyone’ Can Fall Victim to Internet Hackers

Trust: 4.25

Fetched: July 27, 2024, 7:42 p.m., Published: -
 Vulnerabilities: denial of service, sql injection, default password
Affected productsExternal IDs
vendor: asus model: router
vendor: asus model: routers
vendor: asus model: asus
vendor: d-link model: router
vendor: d-link model: dir-859

PKfail Vulnerability Allowed Attackers To Install UEFI Malware

Trust: 3.0

Fetched: July 27, 2024, 7:42 p.m., Published: July 31, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: lenovo model: system

Vulnerabilities in PanelView Plus devices could lead to remote code execution

Related entries in the VARIoT vulnerabilities database: VAR-202309-2171

Trust: 5.5

Fetched: July 27, 2024, 7:41 p.m., Published: July 3, 2024, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: rockwell model: automation panelview plus
vendor: rockwell model: factorytalk view
vendor: rockwell model: factorytalk
vendor: rockwell model: automation panelview
vendor: rockwell model: rslogix
vendor: rockwell automation model: automation panelview plus
vendor: rockwell automation model: factorytalk view
vendor: rockwell automation model: factorytalk
vendor: rockwell automation model: automation panelview
vendor: rockwell automation model: rslogix
db: NVD ids: CVE-2023-2071

CVE - CVE-2023-36670

Trust: 4.0

Fetched: July 27, 2024, 7:41 p.m., Published: Aug. 24, 2030, midnight
 Vulnerabilities: command injection
Affected productsExternal IDs
db: NVD ids: CVE-2023-36670

CVE - CVE-2021-23841

Related entries in the VARIoT vulnerabilities database: VAR-202102-1488

Trust: 3.25

Fetched: July 27, 2024, 7:41 p.m., Published: Aug. 24, 2030, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-23841

Are Your Bluetooth Connections Putting Your Business at Risk? - Krishna Gupta

Trust: 3.5

Fetched: July 27, 2024, 7:39 p.m., Published: July 5, 2024, 12:57 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: essential model: phone
vendor: wireshark model: wireshark

Critical OpenSSH Flaw Enables Full System Compromise - Infosecurity Magazine

Trust: 3.75

Fetched: July 27, 2024, 7:39 p.m., Published: July 1, 2024, 2 p.m.
 Vulnerabilities: memory corruption, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2024-6387, CVE-2008-4109, CVE-2006-5051

Reference guide for security alerts - Microsoft Defender for Cloud | Microsoft Learn

Trust: 3.0

Fetched: July 27, 2024, 7:39 p.m., Published: June 3, 2024, midnight
 Vulnerabilities: privilege escalation
Affected productsExternal IDs