VARIoT latest news about IoT security

phone hacking: Latest News & Videos, Photos about phone hacking \| The Economic Times - Page 1 Trust: 3.0 Fetched: June 9, 2024, 9:58 a.m., Published: June 9, 2024, 3:25 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

apple

model:

iphone

Critical Cacti Vulnerability Let Attackers Execute Remote Code Trust: 4.0 Fetched: June 9, 2024, 9:50 a.m., Published: May 13, 2024, 1:26 p.m.	Vulnerabilities: cross-site scripting, sql injection, authentication bypass...

Affected products

External IDs

db:

NVD

ids:

CVE-2024-27082, CVE-2024-31445, CVE-2024-31444, CVE-2024-31458, CVE-2024-25641, CVE-2024-31460, CVE-2024-34340, CVE-2024-31459, CVE-2024-31443, CVE-2024-29894

Update Alert: Samsung Major Security Flaws in Galaxy Devices Trust: 3.25 Fetched: June 9, 2024, 9:47 a.m., Published: June 8, 2024, 9:39 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

samsung

model:

galaxy

Critical Vulnerability in D-LINK NAS Devices Related entries in the VARIoT vulnerabilities database: VAR-202404-0070 Trust: 5.5 Fetched: June 9, 2024, 9:46 a.m., Published: June 3, 2024, midnight	Vulnerabilities: command injection, remote command injection

Affected products

External IDs

vendor:	d-link	model:	dns-327l
vendor:	d-link	model:	dns-325
vendor:	d-link	model:	dns-320l
vendor:	d-link	model:	dns-340l

db:

NVD

ids:

CVE-2024-3273

Controlling user access to the features of iOS devices Trust: 3.25 Fetched: June 9, 2024, 9:42 a.m., Published: April 9, 2019, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

apple

model:

icloud

Patching High Impact Vulnerabilities: A Retrospective on WebP CVE - Zimperium Trust: 3.75 Fetched: June 9, 2024, 9:41 a.m., Published: May 20, 2024, 4:14 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

google

model:

android

db:

NVD

ids:

CVE-2023-4863

Protecting Kaspersky Endpoint Security for Android against removal Trust: 3.25 Fetched: June 9, 2024, 9:39 a.m., Published: April 9, 2019, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

samsung

model:

mobile

Google Chrome Deadline-72 Hours To Update Or Delete Your Browser Trust: 4.25 Fetched: June 9, 2024, 9:35 a.m., Published: June 4, 2024, midnight	Vulnerabilities: heap corruption, use after free

Affected products

External IDs

vendor:	google	model:	chrome
vendor:	google	model:	google chrome
vendor:	google	model:	home

db:

NVD

ids:

CVE-2024-5274, CVE-2024-4947, CVE-2024-4761

Vulnerability Recap 5/13/24: F5, Citrix & Chrome Trust: 5.5 Fetched: June 9, 2024, 9:33 a.m., Published: May 13, 2024, 7:49 p.m.	Vulnerabilities: sql injection, denial of service, memory corruption...

Affected products

External IDs

vendor:	cisco	model:	small business
vendor:	google	model:	chrome
vendor:	citrix	model:	hypervisor

db:

NVD

ids:

CVE-2023-47610, CVE-2024-26026, CVE-2024-4671, CVE-2023-49606, CVE-2024-21793

Check Point VPN Vulnerability Advisory \| Lumu Technologies Trust: 3.0 Fetched: June 9, 2024, 9:32 a.m., Published: June 5, 2024, 4:59 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	check point	model:	check point
vendor:	check point	model:	check point vpn

It Was Not Me! Malware-Initiated Vulnerability Scanning Is on the Rise Trust: 4.25 Fetched: June 9, 2024, 9:31 a.m., Published: April 8, 2024, 3 p.m.	Vulnerabilities: authentication bypass, command injection, request forgery...

Affected products

External IDs

vendor:	cisco	model:	router
vendor:	cisco	model:	soho
vendor:	cisco	model:	routers
vendor:	netgear	model:	router
vendor:	palo	model:	firewall
vendor:	palo	model:	networks
vendor:	palo alto networks	model:	firewall
vendor:	palo alto networks	model:	networks

db:

NVD

ids:

CVE-2024-21887, CVE-2024-21893, CVE-2023-34362, CVE-2023-46805

[AD-012] Protecting Your IoT Devices Trust: 4.0 Fetched: June 9, 2024, 9:30 a.m., Published: June 9, 2024, midnight	Vulnerabilities: default credentials

Affected products	External IDs

What's new Trust: 3.75 Fetched: June 9, 2024, 9:26 a.m., Published: April 9, 2019, midnight	Vulnerabilities: weak password

Affected products

External IDs

vendor:

apple

model:

macos

Zyxel issues emergency RCE patch for end-of-life NAS devices \| Vumetric Cyber Portal Trust: 3.75 Fetched: June 7, 2024, 9:33 a.m., Published: June 7, 2024, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	zyxel	model:	nas542
vendor:	zyxel	model:	nas326

db:

NVD

ids:

CVE-2024-29973, CVE-2024-29972, CVE-2024-29974

Google's June 2024 update patches 37 vulnerabilities, Samsung adds 22 more Trust: 3.5 Fetched: June 7, 2024, 9:27 a.m., Published: June 5, 2024, 12:16 p.m.	Vulnerabilities: code execution, buffer overflow

Affected products

External IDs

vendor:	samsung	model:	galaxy
vendor:	google	model:	pixel
vendor:	google	model:	android
vendor:	oneplus	model:	one

nvdlib · PyPI Trust: 4.0 Fetched: June 7, 2024, 9:26 a.m., Published: May 7, 2024, midnight	Vulnerabilities: code execution

Affected products

External IDs

db:

NVD

ids:

CVE-2021-26857, CVE-2021-27078, CVE-2021-26858, CVE-2021-26412, CVE-2021-26855, CVE-2021-26854, CVE-2021-27065

What is Remote Access Security? \| Definition \| StrongDM Trust: 3.5 Fetched: June 7, 2024, 9:24 a.m., Published: June 4, 2024, midnight	Vulnerabilities: code execution, brute force attack, authentication bypass

Affected products

External IDs

vendor:

delegate

model:

delegate

Zyxel patches critical flaws in EOL NAS devices - Help Net Security Trust: 5.75 Fetched: June 7, 2024, 9:20 a.m., Published: June 6, 2024, 11:38 a.m.	Vulnerabilities: information disclosure, command injection, code execution

Affected products

External IDs

vendor:	zyxel	model:	nas542
vendor:	zyxel	model:	nas326

db:

NVD

ids:

CVE-2024-29973, CVE-2024-29976, CVE-2024-29975, CVE-2024-29974, CVE-2024-29972

Update remediates critical bugs in EOL Zyxel NAS devices \| SC Media Trust: 4.75 Fetched: June 7, 2024, 9:19 a.m., Published: Feb. 13, 2024, 7 p.m.	Vulnerabilities: code execution, command injection, code injection

Affected products

External IDs

vendor:	zyxel	model:	nas542
vendor:	zyxel	model:	nas326

db:

NVD

ids:

CVE-2024-29973, CVE-2024-29976, CVE-2024-29975, CVE-2024-29974, CVE-2024-29972

Zyxel Patches EOL NAS Devices Against Three Critical Flaws Trust: 5.75 Fetched: June 7, 2024, 9:18 a.m., Published: June 5, 2024, 3:06 p.m.	Vulnerabilities: privilege management vulnerability, code execution, command injection...

Affected products

External IDs

vendor:	zyxel	model:	nas542
vendor:	zyxel	model:	nas326

db:

NVD

ids:

CVE-2024-29973, CVE-2024-29976, CVE-2024-29975, CVE-2024-29974, CVE-2024-29972

VARIoT news about IoT security