Sign-up

VARIoT news about IoT security

Top 15 Cybersecurity Trends in 2024 to Secure Data

Trust: 5.5

Fetched: Aug. 7, 2024, 9:10 a.m., Published: July 4, 2024, 6 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: trend model: security
vendor: trend model: antivirus
vendor: tesla model: model
vendor: serve model: serve

Evaluate SNA Vulnerabilities with CVR - Cisco

Trust: 3.0

Fetched: Aug. 7, 2024, 9:09 a.m., Published: May 31, 2024, 1:15 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: serve model: serve

Critical Android Kernel Vulnerability Exposes Devices to Exploitation - Vulert

Trust: 5.5

Fetched: Aug. 7, 2024, 9:09 a.m., Published: Aug. 6, 2024, 9:23 a.m.
 Vulnerabilities: privilege escalation, code execution, information disclosure
Affected productsExternal IDs
vendor: google model: android
vendor: google model: pixel
db: NVD ids: CVE-2024-32896, CVE-2024-29748, CVE-2024-36971, CVE-2024-29745, CVE-2018-0824

Google just fixed 46 security flaws, including an actively exploited zero-day - update your Android phone now | Tom's Guide

Trust: 4.75

Fetched: Aug. 7, 2024, 9:07 a.m., Published: Aug. 6, 2024, 6:36 p.m.
 Vulnerabilities: use after free
Affected productsExternal IDs
vendor: samsung model: android phone
vendor: samsung model: samsung
vendor: google model: android
vendor: google model: pixel
db: NVD ids: CVE-2024-36971

Security Alert for Apple Device Users in India: Immediate Updates Advised

Trust: 4.75

Fetched: Aug. 6, 2024, 9:48 a.m., Published: Aug. 5, 2024, 7:19 a.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: apple model: watchos
vendor: apple model: macos
vendor: apple model: tvos
vendor: apple model: safari

CVE-2024-39565 - Junos OS: J-Web: An unauthenticated, network-based attacker can perform XPATH injection attack against a device. - SecAlerts

Trust: 5.0

Fetched: Aug. 6, 2024, 9:47 a.m., Published: Aug. 8, 2024, midnight
 Vulnerabilities: injection attack
Affected productsExternal IDs
db: NVD ids: CVE-2024-39565

CVE-2024-36491 - Exploits & Severity - Feedly

Trust: 6.0

Fetched: Aug. 6, 2024, 9:46 a.m., Published: July 17, 2024, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: trend model: security
db: NVD ids: CVE-2024-36491

CVE-2024-42149 - vulnerability database | Vulners.com

Trust: 3.0

Fetched: Aug. 6, 2024, 9:45 a.m., Published: July 30, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2024-42149

PKfail Vulnerability Allows Hackers to Install UEFI Malware on Over 200 Device Models - VIP Protection Technologies

Trust: 3.5

Fetched: Aug. 6, 2024, 9:44 a.m., Published: July 26, 2024, 8:42 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: lenovo model: system
vendor: lenovo model: updates
vendor: lenovo model: bios
vendor: dell model: bios

Introduction to Common Gateway Interface and CGI Vulnerabilities

Trust: 5.5

Fetched: Aug. 6, 2024, 9:42 a.m., Published: July 25, 2018, midnight
 Vulnerabilities: command execution
Affected productsExternal IDs
vendor: cisco model: meeting
vendor: cisco model: information server
vendor: cisco model: intrusion prevention system
db: NVD ids: CVE-1999-0260, CVE-1999-0174, CVE-1999-0237

Security bypass possible with now-addressed Rockwell Logix PLC flaw | SC Media

Trust: 5.0

Fetched: Aug. 6, 2024, 9:41 a.m., Published: June 11, 2024, 5 p.m.
 Vulnerabilities: security bypass
Affected productsExternal IDs
db: NVD ids: CVE-2024-6242

Vulnerability of certain Ubiquiti devices. -ZAM

Trust: 5.75

Fetched: Aug. 6, 2024, 9:40 a.m., Published: Aug. 2, 2024, 7:34 a.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: ubiquiti networks model: edgemax
vendor: ubiquiti model: edgemax
vendor: check point model: check point
vendor: check point software technologies model: check point
db: NVD ids: CVE-2017-0938

Android Automotive OS Update Bulletin-August 2024 - vulnerability database | Vulners.com

Trust: 3.5

Fetched: Aug. 6, 2024, 9:40 a.m., Published: July 1, 2024, midnight
 Vulnerabilities: denial of service, information disclosure, code execution
Affected productsExternal IDs
vendor: huawei model: huawei
vendor: samsung model: notes
vendor: samsung model: samsung
vendor: google model: android
vendor: google model: pixel
vendor: motorola model: motorola
vendor: motorola model: android

Prevent Your Baby Monitor from Getting Hacked | Batten Safe

Trust: 3.5

Fetched: Aug. 6, 2024, 9:40 a.m., Published: Nov. 11, 2021, 12:01 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: essential model: phone

Security Advisory | Rockwell Automation | US

Trust: 3.75

Fetched: Aug. 6, 2024, 9:39 a.m., Published: Aug. 1, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: rockwell model: controllogix
vendor: rockwell model: guardlogix
vendor: rockwell automation model: controllogix
vendor: rockwell automation model: guardlogix
db: NVD ids: CVE-2024-6242

ERROR: The request could not be satisfied

Trust: 3.25

Fetched: Aug. 6, 2024, 9:39 a.m., Published: Aug. 1, 2024, midnight
 Vulnerabilities: configuration error
Affected productsExternal IDs

India’s CERT-IN flags ‘multiple vulnerabilities’ in software of Apple devices including iPhone, VisionPro headset, Mac, iPad, and Apple Watch - The Hindu

Trust: 3.75

Fetched: Aug. 6, 2024, 9:38 a.m., Published: Aug. 5, 2024, 5:29 a.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: apple model: watchos
vendor: apple model: ipad
vendor: apple model: macos
vendor: apple model: iphone
vendor: apple model: tvos
vendor: apple model: watch
vendor: apple model: safari

Critical Flaw in Rockwell Automation Devices Allows Unauthorized Access - OSINT without borders

Trust: 5.75

Fetched: Aug. 6, 2024, 9:36 a.m., Published: Aug. 5, 2024, 7:23 a.m.
 Vulnerabilities: security bypass
Affected productsExternal IDs
vendor: rockwell model: controllogix 5580
vendor: rockwell model: 1756-en2tr series c
vendor: rockwell model: controllogix controller
vendor: rockwell model: 1756-en2f series c
vendor: rockwell model: automation controllogix
vendor: rockwell model: 1756-en3tr series b
vendor: rockwell model: 1756-en3tr series
vendor: rockwell model: controllogix
vendor: rockwell model: 1756-en2t series
vendor: rockwell model: guardlogix
vendor: rockwell model: 1756-en2f series
vendor: rockwell model: 1756-en2tr series
vendor: rockwell automation model: controllogix 5580
vendor: rockwell automation model: 1756-en2tr series c
vendor: rockwell automation model: controllogix controller
vendor: rockwell automation model: 1756-en2f series c
vendor: rockwell automation model: automation controllogix
vendor: rockwell automation model: 1756-en3tr series b
vendor: rockwell automation model: 1756-en3tr series
vendor: rockwell automation model: controllogix
vendor: rockwell automation model: 1756-en2t series
vendor: rockwell automation model: guardlogix
vendor: rockwell automation model: 1756-en2f series
vendor: rockwell automation model: 1756-en2tr series
db: NVD ids: CVE-2024-6242

What is a Denial of Service (DoS) attack? types, Examples

Trust: 3.5

Fetched: Aug. 6, 2024, 9:36 a.m., Published: July 10, 2024, 10:06 a.m.
 Vulnerabilities: service disruption, denial of service, resource exhaustion...
Affected productsExternal IDs

Android Developers Blog: Making security easy: How we are helping you fix vulnerabilities in your Android apps

Trust: 3.75

Fetched: Aug. 6, 2024, 9:35 a.m., Published: -
 Vulnerabilities: directory traversal
Affected productsExternal IDs
vendor: google model: android