Sign-up

VARIoT news about IoT security

Beware of These Hardware Security Vulnerabilities | BM Network Solutions Inc.

Trust: 4.25

Fetched: May 22, 2024, 9:17 a.m., Published: -
 Vulnerabilities: default password
Affected productsExternal IDs

Four Critical Vulnerabilities Expose HPE Aruba Devices to RCE Attacks | The Cyber Security News

Trust: 4.5

Fetched: May 22, 2024, 9:15 a.m., Published: May 3, 2024, midnight
 Vulnerabilities: buffer overflow, code execution
Affected productsExternal IDs
vendor: aruba model: arubaos
vendor: aruba networks model: arubaos
db: NVD ids: CVE-2024-26304, CVE-2024-33511, CVE-2024-33512, CVE-2024-26305

Buffer Overflow Attacks: Detection, Prevention & Mitigation | Synopsys Blog

Trust: 3.75

Fetched: May 22, 2024, 9:14 a.m., Published: March 31, 2024, midnight
 Vulnerabilities: buffer overflow
Affected productsExternal IDs
vendor: canary model: canary

A Secure Future For Medical Devices And Patients | By Charles Marrow - Medical Device News Magazine

Trust: 3.0

Fetched: May 22, 2024, 9:13 a.m., Published: May 15, 2024, 12:02 p.m.
 Vulnerabilities: -
Affected productsExternal IDs

Security Advisory | Rockwell Automation

Trust: 5.0

Fetched: May 22, 2024, 9:13 a.m., Published: May 22, 5015, midnight
 Vulnerabilities: input validation vulnerability
Affected productsExternal IDs
db: NVD ids: CVE-2024-2424

When Innovation Hurts: IoT Vulnerabilities in Healthcare

Trust: 5.5

Fetched: May 22, 2024, 9:13 a.m., Published: May 27, 2024, midnight
 Vulnerabilities: weak password
Affected productsExternal IDs
vendor: trend model: security

ERROR: The request could not be satisfied

Trust: 3.25

Fetched: May 22, 2024, 9:12 a.m., Published: -
 Vulnerabilities: configuration error
Affected productsExternal IDs

Siemens Developing Solution for Device Impacted by Palo Alto Firewall Vulnerability - Black Hat News

Trust: 3.75

Fetched: May 21, 2024, 9:38 a.m., Published: April 26, 2024, 12:20 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: siemens model: ruggedcom
vendor: palo model: networks
vendor: palo model: pan-os
vendor: palo model: firewall
vendor: palo alto networks model: networks
vendor: palo alto networks model: pan-os
vendor: palo alto networks model: firewall
db: NVD ids: CVE-2024-3400

CVE-2023-37310 D-Link DAP-2622 DDP Set Device Info Auth User... - vulnerability database | Vulners.com

Trust: 5.0

Fetched: May 21, 2024, 9:37 a.m., Published: May 3, 2024, 1:58 a.m.
 Vulnerabilities: buffer overflow, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2023-37310

Operational Technology Exposure: Beyond Software Vulnerabilities | Nexus

Trust: 4.75

Fetched: May 21, 2024, 9:37 a.m., Published: Oct. 12, 2024, midnight
 Vulnerabilities: default credentials
Affected productsExternal IDs

Zyxel security advisory for buffer overflow vulnerabilities in some 5G NR/4G LTE CPE, DSL/Ethernet CPE, fiber ONT, WiFi extender, and home router devices | Zyxel Networks

Trust: 5.5

Fetched: May 21, 2024, 9:34 a.m., Published: May 7, 2024, midnight
 Vulnerabilities: denial of service, buffer overflow
Affected productsExternal IDs
db: NVD ids: CVE-2023-37929, CVE-2024-0816

Report: 11 Vulnerabilities Found in GE Ultrasound Devices

Trust: 3.5

Fetched: May 21, 2024, 9:34 a.m., Published: May 11, 2024, midnight
 Vulnerabilities: path traversal, command injection
Affected productsExternal IDs
db: NVD ids: CVE-2024-27106, CVE-2024-27107

Cisco ArcaneDoor vulnerabilities: How to defend against CVE-2024-20353, CVE-2024-20359 - Skybox Security

Trust: 4.5

Fetched: May 21, 2024, 9:33 a.m., Published: -
 Vulnerabilities: improper validation, code execution
Affected productsExternal IDs
vendor: cisco model: firepower
vendor: cisco model: firepower threat defense
vendor: cisco model: adaptive security appliance
vendor: cisco model: cisco adaptive security appliance
db: NVD ids: CVE-2024-20358, CVE-2024-20353, CVE-2024-20359

How to Ensure Web Hosting Security: 10 Best Practices

Trust: 3.5

Fetched: May 21, 2024, 9:32 a.m., Published: May 17, 2023, 4:22 a.m.
 Vulnerabilities: cross-site scripting, sql injection
Affected productsExternal IDs
vendor: filezilla model: server

Google issues yet another Chrome update to fix a high-severity, zero-day vulnerability | TechSpot

Trust: 5.0

Fetched: May 21, 2024, 9:30 a.m., Published: May 21, 4070, midnight
 Vulnerabilities: memory access issue
Affected productsExternal IDs
vendor: google model: chrome
db: NVD ids: CVE-2024-4761, CVE-2024-2887, CVE-2024-0519

Samsung details the May 2024 security patch for Galaxy devices

Trust: 3.5

Fetched: May 21, 2024, 9:30 a.m., Published: May 7, 2024, 6:10 p.m.
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
vendor: google model: android
vendor: samsung model: galaxy

Samsung Mobile Devices Security Vulnerabilities and Issues - Samsung Mobile Devices CVE List | Vulners.com

Trust: 3.75

Fetched: May 21, 2024, 9:28 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: samsung model: mobile devices
vendor: samsung model: mobile
vendor: samsung model: samsung mobile
db: NVD ids: CVE-2024-20821

Multiple QNAP NAS Devices Zero-Day Vulnerabilities - Rewterz

Trust: 3.0

Fetched: May 21, 2024, 9:26 a.m., Published: May 21, 2024, 6:53 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2023-51365, CVE-2923-51365, CVE-2023-51364

ArcaneDoor: State-Sponsored Malware Targeting Cisco Devices - Conquer your risk

Trust: 3.75

Fetched: May 21, 2024, 9:24 a.m., Published: April 26, 2024, 12:45 p.m.
 Vulnerabilities: command execution
Affected productsExternal IDs
db: NVD ids: CVE-2024-20353, CVE-2024-20359

Cinterion Modem Vulnerabilities Pose Risks To IoT Devices

Trust: 4.75

Fetched: May 21, 2024, 9:22 a.m., Published: May 14, 2024, midnight
 Vulnerabilities: privilege escalation, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2023-47616, CVE-2023-47611, CVE-2023-47610