Sign-up

VARIoT news about IoT security

Operational Technology Exposure: Beyond Software Vulnerabilities | Nexus

Trust: 4.75

Fetched: May 21, 2024, 9:37 a.m., Published: Oct. 12, 2024, midnight
 Vulnerabilities: default credentials
Affected productsExternal IDs

Zyxel security advisory for buffer overflow vulnerabilities in some 5G NR/4G LTE CPE, DSL/Ethernet CPE, fiber ONT, WiFi extender, and home router devices | Zyxel Networks

Trust: 5.5

Fetched: May 21, 2024, 9:34 a.m., Published: May 7, 2024, midnight
 Vulnerabilities: denial of service, buffer overflow
Affected productsExternal IDs
db: NVD ids: CVE-2023-37929, CVE-2024-0816

Report: 11 Vulnerabilities Found in GE Ultrasound Devices

Trust: 3.5

Fetched: May 21, 2024, 9:34 a.m., Published: May 11, 2024, midnight
 Vulnerabilities: path traversal, command injection
Affected productsExternal IDs
db: NVD ids: CVE-2024-27106, CVE-2024-27107

Cisco ArcaneDoor vulnerabilities: How to defend against CVE-2024-20353, CVE-2024-20359 - Skybox Security

Trust: 4.5

Fetched: May 21, 2024, 9:33 a.m., Published: -
 Vulnerabilities: improper validation, code execution
Affected productsExternal IDs
vendor: cisco model: firepower
vendor: cisco model: firepower threat defense
vendor: cisco model: adaptive security appliance
vendor: cisco model: cisco adaptive security appliance
db: NVD ids: CVE-2024-20358, CVE-2024-20353, CVE-2024-20359

How to Ensure Web Hosting Security: 10 Best Practices

Trust: 3.5

Fetched: May 21, 2024, 9:32 a.m., Published: May 17, 2023, 4:22 a.m.
 Vulnerabilities: cross-site scripting, sql injection
Affected productsExternal IDs
vendor: filezilla model: server

Google issues yet another Chrome update to fix a high-severity, zero-day vulnerability | TechSpot

Trust: 5.0

Fetched: May 21, 2024, 9:30 a.m., Published: May 21, 4070, midnight
 Vulnerabilities: memory access issue
Affected productsExternal IDs
vendor: google model: chrome
db: NVD ids: CVE-2024-4761, CVE-2024-2887, CVE-2024-0519

Samsung details the May 2024 security patch for Galaxy devices

Trust: 3.5

Fetched: May 21, 2024, 9:30 a.m., Published: May 7, 2024, 6:10 p.m.
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
vendor: google model: android
vendor: samsung model: galaxy

Samsung Mobile Devices Security Vulnerabilities and Issues - Samsung Mobile Devices CVE List | Vulners.com

Trust: 3.75

Fetched: May 21, 2024, 9:28 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: samsung model: mobile devices
vendor: samsung model: mobile
vendor: samsung model: samsung mobile
db: NVD ids: CVE-2024-20821

Multiple QNAP NAS Devices Zero-Day Vulnerabilities - Rewterz

Trust: 3.0

Fetched: May 21, 2024, 9:26 a.m., Published: May 21, 2024, 6:53 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2023-51365, CVE-2923-51365, CVE-2023-51364

ArcaneDoor: State-Sponsored Malware Targeting Cisco Devices - Conquer your risk

Trust: 3.75

Fetched: May 21, 2024, 9:24 a.m., Published: April 26, 2024, 12:45 p.m.
 Vulnerabilities: command execution
Affected productsExternal IDs
db: NVD ids: CVE-2024-20353, CVE-2024-20359

Cinterion Modem Vulnerabilities Pose Risks To IoT Devices

Trust: 4.75

Fetched: May 21, 2024, 9:22 a.m., Published: May 14, 2024, midnight
 Vulnerabilities: privilege escalation, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2023-47616, CVE-2023-47611, CVE-2023-47610

CVE-2024-35848 - In the Linux kernel, the following vulnerability h

Trust: 4.0

Fetched: May 21, 2024, 9:20 a.m., Published: May 17, 2024, 3:15 p.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
db: NVD ids: CVE-2024-35848

Cisco Crosswork Network Services Orchestrator Vulnerabilities

Trust: 3.0

Fetched: May 21, 2024, 9:19 a.m., Published: May 15, 2024, 7:10 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2024-20326, CVE-2024-20389

CVE-2023-37929 - The buffer overflow vulnerability in the CGI progr

Trust: 4.75

Fetched: May 21, 2024, 9:19 a.m., Published: May 21, 2024, 2:15 a.m.
 Vulnerabilities: denial of service, buffer overflow
Affected productsExternal IDs
db: NVD ids: CVE-2023-37929

CVE-2024-36009 - In the Linux kernel, the following vulnerability h

Trust: 3.0

Fetched: May 21, 2024, 9:18 a.m., Published: May 20, 2024, 10:15 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2024-36009

Cyber Defense Magazine names Forward Networks a Market Leader in Vulnerability Assessment, Remediation, and Management at Global Infosec Awards

Trust: 3.0

Fetched: May 21, 2024, 9:16 a.m., Published: May 3, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs

Public RCE Exploit Revealed for Unpatched QNAP QTS Zero-Day - VULNERA

Trust: 5.75

Fetched: May 21, 2024, 9:16 a.m., Published: May 20, 2024, 2:57 p.m.
 Vulnerabilities: memory corruption, authentication bypass, buffer overflow...
Affected productsExternal IDs
vendor: qnap model: qnap qts
db: NVD ids: CVE-2023-50361, CVE-2023-50364, CVE-2024-27130

CVE-2024-0816 - The buffer overflow vulnerability in the DX3300-T1

Trust: 4.75

Fetched: May 21, 2024, 9:15 a.m., Published: May 21, 2024, 2:15 a.m.
 Vulnerabilities: denial of service, buffer overflow
Affected productsExternal IDs
db: NVD ids: CVE-2024-0816

Centre warns against vulnerability in Android devices, suggests ways to protect personal data - CNBC TV18

Trust: 3.0

Fetched: May 21, 2024, 9:14 a.m., Published: May 14, 2024, 6 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

IoT Device Security Issues and Why They Exist

Trust: 4.25

Fetched: May 21, 2024, 9:11 a.m., Published: Sept. 28, 2020, noon
 Vulnerabilities: command execution, arbitrary command execution
Affected productsExternal IDs
vendor: nest model: learning thermostat