Sign-up

VARIoT news about IoT security

Securing Operational Technology in Healthcare - Introducing a New Module - Security Boulevard

Trust: 3.75

Fetched: Jan. 21, 2024, 10:25 a.m., Published: Jan. 16, 2024, 3:51 p.m.
 Vulnerabilities: service disruption
Affected productsExternal IDs
vendor: check point model: check point

System BIOS komputera Dell XPS 9305 | Szczegóły sterownika | Dell Polska

Trust: 3.25

Fetched: Jan. 21, 2024, 10:24 a.m., Published: Jan. 21, 9305, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios

Det. Eng. Weekly #54 - I hacked the SEC Twitter 🐦

Trust: 4.75

Fetched: Jan. 21, 2024, 10:15 a.m., Published: Jan. 17, 2024, 8:24 p.m.
 Vulnerabilities: command injection
Affected productsExternal IDs
vendor: canary model: canary
db: NVD ids: CVE-2023-24955, CVE-2023-20357, CVE-2024-21591

Dell XPS 8960 System BIOS | Szczegóły sterownika | Dell Polska

Trust: 3.25

Fetched: Jan. 21, 2024, 10:15 a.m., Published: Jan. 21, 8960, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios

Smart Bulbs Illuminating the Risks of Unsecured Home Automation

Trust: 4.5

Fetched: Jan. 21, 2024, 10:14 a.m., Published: Jan. 8, 2024, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: google model: home

D-Link R15 Code Issue Vulnerability - vulnerability database | Vulners.com

Trust: 3.25

Fetched: Jan. 21, 2024, 10:14 a.m., Published: Jan. 16, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: d-link model: router

Cisco ASA Vulnerability for Sale - CyberMaterial

Trust: 5.0

Fetched: Jan. 21, 2024, 10:14 a.m., Published: Jan. 4, 2024, 2:35 p.m.
 Vulnerabilities: command injection, remote command injection
Affected productsExternal IDs
vendor: cisco model: series

Act now! Ivanti vulnerabilities are being actively exploited | Malwarebytes

Trust: 3.75

Fetched: Jan. 21, 2024, 10:13 a.m., Published: Jan. 11, 2024, 8:13 p.m.
 Vulnerabilities: authentication bypass, command injection
Affected productsExternal IDs
db: NVD ids: CVE-2023-46805, CVE-2024-21887

12 Tips for Securing Your Smart Home Devices | All About Cookies

Trust: 4.25

Fetched: Jan. 21, 2024, 10:12 a.m., Published: Dec. 12, 2022, 5:53 p.m.
 Vulnerabilities: default password
Affected productsExternal IDs
vendor: google model: home
vendor: google model: wi-fi router
vendor: google model: google home
vendor: mesh model: mesh

What to do with that fancy new internet-connected device you... - vulnerability database | Vulners.com

Trust: 4.25

Fetched: Jan. 21, 2024, 10:11 a.m., Published: Jan. 18, 2024, 7 p.m.
 Vulnerabilities: encryption attack, authentication bypass, command injection
Affected productsExternal IDs
vendor: cisco model: router
vendor: cisco model: routers
vendor: google model: home
vendor: google model: wifi
vendor: google model: google home
vendor: amazon model: echo show
vendor: apple model: iphone
db: NVD ids: CVE-2023-46805, CVE-2024-21887

CVE - Search Results

Related entries in the VARIoT vulnerabilities database: VAR-201909-0036, VAR-201907-1336, VAR-201905-0064, VAR-201906-0648, VAR-201907-1335, VAR-201807-0405

Trust: 5.25

Fetched: Jan. 21, 2024, 10:11 a.m., Published: Jan. 3, 2024, midnight
 Vulnerabilities: remote file inclusion, detection bypass, bypass access restriction...
Affected productsExternal IDs
vendor: sony model: bravia
vendor: samsung model: mobile
vendor: samsung model: smarttv
vendor: jector model: fm-k75
db: NVD ids: CVE-2019-6005, CVE-2019-11890, CVE-2019-9871, CVE-2022-44636, CVE-2019-12477, CVE-2019-11336, CVE-2020-10193, CVE-2019-11889, CVE-2020-28055, CVE-2020-10180, CVE-2019-10886, CVE-2023-41270, CVE-2020-27403, CVE-2020-21405, CVE-2021-27943, CVE-2018-13989, CVE-2020-9264, CVE-2020-21406

CVE - Search Results

Related entries in the VARIoT vulnerabilities database: VAR-201506-0038, VAR-201505-0417, VAR-201801-0826, VAR-201401-0178, VAR-201812-0558, VAR-201508-0166

Trust: 4.5

Fetched: Jan. 21, 2024, 9:54 a.m., Published: Jan. 3, 2024, midnight
 Vulnerabilities: directory traversal, memory access issue, index error...
Affected productsExternal IDs
vendor: parallels model: desktop
db: NVD ids: CVE-2013-1766, CVE-2020-15859, CVE-2013-6458, CVE-2020-25723, CVE-2018-16872, CVE-2013-4151, CVE-2018-10908, CVE-2016-8667, CVE-2021-20263, CVE-2020-27821, CVE-2020-28916, CVE-2016-2857, CVE-2018-7550, CVE-2020-1983, CVE-2022-35414, CVE-2020-16092, CVE-2015-5225, CVE-2016-5338, CVE-2019-12155, CVE-2016-8576, CVE-2013-4531, CVE-2016-7157, CVE-2020-13253, CVE-2019-20382, CVE-2013-1922, CVE-2023-0664, CVE-2021-3607, CVE-2012-2121, CVE-2021-3595, CVE-2021-20181, CVE-2015-5165, CVE-2016-4002, CVE-2019-6778, CVE-2017-1000256, CVE-2017-5579, CVE-2014-3471, CVE-2021-21889, CVE-2017-12809, CVE-2020-11869, CVE-2016-10028, CVE-2015-8818, CVE-2018-10981, CVE-2013-4538, CVE-2014-5263, CVE-2013-4536, CVE-2021-20257, CVE-2017-2630, CVE-2020-27617, CVE-2016-7155, CVE-2014-3615, CVE-2017-9310, CVE-2011-1751, CVE-2020-25742, CVE-2011-2212, CVE-2020-15863, CVE-2022-1050, CVE-2018-20191, CVE-2020-25743, CVE-2016-4964, CVE-2016-4439, CVE-2022-3165, CVE-2020-35505, CVE-2022-0216, CVE-2017-7718, CVE-2022-26353, CVE-2017-6058, CVE-2010-3881, CVE-2016-9923, CVE-2020-2574, CVE-2012-6075, CVE-2023-40360, CVE-2015-8817, CVE-2015-5745, CVE-2016-9381, CVE-2017-6317, CVE-2020-27534, CVE-2014-3689, CVE-2007-5730, CVE-2016-9602, CVE-2016-8910, CVE-2020-13765, CVE-2017-8112, CVE-2016-9106, CVE-2018-19489, CVE-2021-3592, CVE-2013-4539, CVE-2017-5956, CVE-2017-5856, CVE-2007-1321, CVE-2016-5403, CVE-2021-20221, CVE-2016-7170, CVE-2020-25741, CVE-2020-35503, CVE-2017-7493, CVE-2016-7156, CVE-2014-4508, CVE-2017-6505, CVE-2021-28704, CVE-2023-2680, CVE-2023-3301, CVE-2016-6162, CVE-2008-4553, CVE-2017-15119, CVE-2018-5683, CVE-2020-35504, CVE-2016-6490, CVE-2017-7539, CVE-2015-3209, CVE-2007-1366, CVE-2016-8668, CVE-2007-1320, CVE-2017-11334, CVE-2016-9914, CVE-2015-8743, CVE-2016-9102, CVE-2020-24165, CVE-2018-18849, CVE-2020-17380, CVE-2017-5526, CVE-2015-4037, CVE-2017-8086, CVE-2017-10911, CVE-2007-5729, CVE-2016-2841, CVE-2016-9922, CVE-2016-5106, CVE-2020-13659, CVE-2022-4144, CVE-2017-2620, CVE-2014-8131, CVE-2012-3515, CVE-2019-12067, CVE-2021-21890, CVE-2021-43415, CVE-2019-12928, CVE-2016-9101, CVE-2015-8504, CVE-2014-3672, CVE-2016-5126, CVE-2018-12617, CVE-2022-3872, CVE-2021-21888, CVE-2015-8666, CVE-2014-0222, CVE-2018-20125, CVE-2015-7549, CVE-2012-2652, CVE-2015-2756, CVE-2013-4534, CVE-2021-21892, CVE-2022-2962, CVE-2015-3456, CVE-2015-5158, CVE-2023-42467, CVE-2021-21894, CVE-2016-10214, CVE-2017-10806, CVE-2014-2894, CVE-2016-5337, CVE-2021-3527, CVE-2013-4527, CVE-2020-35517, CVE-2018-18438, CVE-2022-26354, CVE-2014-0223, CVE-2021-3582, CVE-2011-2512, CVE-2008-2004, CVE-2021-3608, CVE-2010-0297, CVE-2020-14364, CVE-2021-3593, CVE-2023-3354, CVE-2020-6100, CVE-2019-6501, CVE-2018-17958, CVE-2018-19364, CVE-2023-3180, CVE-2015-2152, CVE-2022-42334, CVE-2017-5715, CVE-2020-25625, CVE-2016-6888, CVE-2014-3124, CVE-2017-5957, CVE-2021-28707, CVE-2018-20815, CVE-2017-8284, CVE-2016-3712, CVE-2016-2197, CVE-2019-9824, CVE-2019-13164, CVE-2013-2007, CVE-2019-15034, CVE-2017-9060, CVE-2017-5552, CVE-2015-2752, CVE-2017-5973, CVE-2016-7422, CVE-2014-0146, CVE-2017-6414, CVE-2013-2231, CVE-2017-5667, CVE-2017-2615, CVE-2015-7311, CVE-2013-4540, CVE-2016-9845, CVE-2021-3930, CVE-2017-13672, CVE-2015-5166, CVE-2015-7512, CVE-2014-0147, CVE-2023-1386, CVE-2017-5525, CVE-2015-5160, CVE-2017-8380, CVE-2020-1711, CVE-2018-17963, CVE-2016-4037, CVE-2016-9776, CVE-2023-35194, CVE-2015-7504, CVE-2014-7815, CVE-2023-27380, CVE-2013-4148, CVE-2017-5857, CVE-2021-21896, CVE-2017-18043, CVE-2023-5088, CVE-2017-5578, CVE-2019-15890, CVE-2014-0148, CVE-2009-3616, CVE-2019-5008, CVE-2015-3247, CVE-2013-4529, CVE-2007-1322, CVE-2017-16845, CVE-2018-12892, CVE-2017-17381, CVE-2020-11947, CVE-2020-2025, CVE-2014-3690, CVE-2014-3640, CVE-2020-7211, CVE-2013-4375, CVE-2016-9921, CVE-2011-4111, CVE-2021-4206, CVE-2017-10664, CVE-2016-2858, CVE-2015-5278, CVE-2023-34354, CVE-2010-0741, CVE-2014-9718, CVE-2021-4145, CVE-2019-14283, CVE-2015-1779, CVE-2021-3611, CVE-2021-3507, CVE-2021-21895, CVE-2015-8558, CVE-2015-8345, CVE-2008-1945, CVE-2013-4532, CVE-2018-20124, CVE-2020-25624, CVE-2016-9916, CVE-2016-9104, CVE-2017-6386, CVE-2013-4526, CVE-2023-2861, CVE-2016-7421, CVE-2008-4539, CVE-2020-10717, CVE-2020-25085, CVE-2021-3392, CVE-2020-13791, CVE-2016-2198, CVE-2015-4106, CVE-2008-5714, CVE-2019-14284, CVE-2021-20203, CVE-2016-7908, CVE-2017-15268, CVE-2013-4533, CVE-2021-21887, CVE-2020-12430, CVE-2017-15289, CVE-2011-1750, CVE-2014-8136, CVE-2018-7858, CVE-2022-4172, CVE-2013-4537, CVE-2017-8309, CVE-2015-7295, CVE-2021-21891, CVE-2017-5931, CVE-2015-5279, CVE-2018-16847, CVE-2017-7471, CVE-2016-7161, CVE-2020-14394, CVE-2015-5154, CVE-2014-7840, CVE-2016-7995, CVE-2023-0330, CVE-2016-2392, CVE-2016-9915, CVE-2014-0143, CVE-2013-7336, CVE-2021-3544, CVE-2020-29129, CVE-2016-0749, CVE-2013-4153, CVE-2017-9373, CVE-2020-27661, CVE-2017-13673, CVE-2018-18954, CVE-2017-2633, CVE-2013-2230, CVE-2016-10155, CVE-2022-42333, CVE-2020-27616, CVE-2016-9103, CVE-2016-4952, CVE-2023-4135, CVE-2021-3545, CVE-2010-3698, CVE-2021-20255, CVE-2014-0150, CVE-2016-7116, CVE-2007-6227, CVE-2013-4530, CVE-2020-25598, CVE-2017-18030, CVE-2014-0142, CVE-2016-3710, CVE-2018-5748, CVE-2020-12829, CVE-2019-3840, CVE-2010-0429, CVE-2014-0182, CVE-2020-8608, CVE-2017-9503, CVE-2021-3748, CVE-2019-12247, CVE-2017-9330, CVE-2023-35193, CVE-2021-3409, CVE-2018-17962, CVE-2021-20196, CVE-2017-5994, CVE-2018-20123, CVE-2015-8619, CVE-2016-5107, CVE-2020-11102, CVE-2018-19665, CVE-2021-3929, CVE-2013-0241, CVE-2013-4542, CVE-2013-4150, CVE-2023-6683, CVE-2016-7909, CVE-2015-6815, CVE-2014-3633, CVE-2020-24352, CVE-2017-9375, CVE-2016-9603, CVE-2020-29130, CVE-2019-12929, CVE-2017-5898, CVE-2018-1064, CVE-2013-4149, CVE-2017-15118, CVE-2016-7423, CVE-2014-0077, CVE-2007-0998, CVE-2016-7466, CVE-2017-9374, CVE-2017-9524, CVE-2018-11806, CVE-2023-6693, CVE-2021-4207, CVE-2016-6835, CVE-2010-2784, CVE-2013-4154, CVE-2013-2016, CVE-2021-3735, CVE-2017-13711, CVE-2021-3638, CVE-2015-8613, CVE-2016-6351, CVE-2016-6833, CVE-2022-29694, CVE-2019-3812, CVE-2016-1714, CVE-2017-11434, CVE-2020-10702, CVE-2015-5162, CVE-2017-5987, CVE-2016-4453, CVE-2016-9908, CVE-2021-28708, CVE-2016-9105, CVE-2016-10029, CVE-2013-6399, CVE-2016-9912, CVE-2016-5105, CVE-2017-5993, CVE-2013-4535, CVE-2008-4993, CVE-2018-15746, CVE-2016-8577, CVE-2020-13362, CVE-2016-1922, CVE-2015-8745, CVE-2016-6834, CVE-2017-16638, CVE-2016-4001, CVE-2017-7980, CVE-2020-14339, CVE-2016-8909, CVE-2015-8744, CVE-2020-25637, CVE-2010-0428, CVE-2012-4461, CVE-2021-3750, CVE-2020-14415, CVE-2016-4020, CVE-2015-5260, CVE-2020-13361, CVE-2020-10701, CVE-2017-15124, CVE-2020-15469, CVE-2016-5238, CVE-2013-4401, CVE-2017-8379, CVE-2020-10761, CVE-2019-20808, CVE-2016-8669, CVE-2016-7907, CVE-2017-6210, CVE-2017-15038, CVE-2016-1568, CVE-2014-5388, CVE-2016-9637, CVE-2014-0145, CVE-2019-18389, CVE-2017-7377, CVE-2014-3461, CVE-2015-3214, CVE-2016-4454, CVE-2020-13800, CVE-2021-3682, CVE-2011-3346, CVE-2013-4544, CVE-2017-6209, CVE-2016-9907, CVE-2023-3019, CVE-2016-9913, CVE-2021-3947, CVE-2023-1544, CVE-2014-8106, CVE-2018-20216, CVE-2013-4282, CVE-2022-36648, CVE-2016-9846, CVE-2021-4158, CVE-2012-4411, CVE-2021-3713, CVE-2020-7039, CVE-2019-20485, CVE-2020-10756, CVE-2021-3546, CVE-2016-1981, CVE-2020-25084, CVE-2016-4441, CVE-2008-2382, CVE-2011-2527, CVE-2020-13754, CVE-2015-4103, CVE-2012-0029, CVE-2017-14167, CVE-2019-12068, CVE-2013-4344, CVE-2016-8578, CVE-2022-0358, CVE-2015-8556, CVE-2015-8568, CVE-2008-0928, CVE-2015-8701, CVE-2011-0011, CVE-2017-6355, CVE-2023-34356, CVE-2015-8567, CVE-2016-2538, CVE-2021-3416, CVE-2014-0144, CVE-2013-4541, CVE-2010-0431, CVE-2023-28381, CVE-2010-0430, CVE-2016-6836, CVE-2018-20126, CVE-2020-35506, CVE-2016-9911, CVE-2018-16867, CVE-2020-29443, CVE-2016-2391, CVE-2015-8554, CVE-2015-6855, CVE-2013-4377, CVE-2023-3255, CVE-2019-20175, CVE-2016-7994, CVE-2021-3594, CVE-2018-10839, CVE-2015-5239, CVE-2018-13405, CVE-2021-20295, CVE-2019-14378, CVE-2019-8934

Exploitable Flaws In SonicWall Firewalls Have Been Largely Ignored: Researchers

Trust: 6.25

Fetched: Jan. 21, 2024, 9:54 a.m., Published: Jan. 16, 2024, 12:16 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: sonicwall model: sonicos
db: NVD ids: CVE-2023-0656, CVE-2022-22274

Intel BIOS Firmware CVE-2022-21198 (INTEL-SA-00688) - vulnerability database | Vulners.com

Trust: 3.25

Fetched: Jan. 21, 2024, 9:42 a.m., Published: Jan. 16, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2022-21198

Citrix NetScaler devices face active zero-day exploitations | CSO Online

Related entries in the VARIoT vulnerabilities database: VAR-202401-2573, VAR-202401-1629

Trust: 3.75

Fetched: Jan. 21, 2024, 9:36 a.m., Published: Jan. 17, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: citrix model: netscaler
vendor: citrix model: gateway
vendor: citrix model: netscaler adc
vendor: citrix model: netscaler gateway
db: NVD ids: CVE-2023-6548, CVE-2023-6549

Cisco Adaptive Security Device Manager Remote Code Execution Vulnerability

Trust: 5.0

Fetched: Jan. 21, 2024, 9:36 a.m., Published: Aug. 25, 2022, 2:41 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: cisco model: adaptive security device manager
vendor: cisco model: device manager
vendor: cisco model: security device manager

How to identify and prevent firmware vulnerabilities | Infosec

Trust: 3.5

Fetched: Jan. 21, 2024, 9:35 a.m., Published: July 13, 2020, midnight
 Vulnerabilities: buffer overflow
Affected productsExternal IDs
vendor: asus model: asus
vendor: asus model: routers
vendor: dell model: bios
vendor: apple model: watch

Risky Biz News: CitrixBleed vulnerability goes from bad to disastrous

Trust: 4.25

Fetched: Jan. 21, 2024, 9:34 a.m., Published: Oct. 30, 2023, midnight
 Vulnerabilities: privilege escalation, code execution, memory leak
Affected productsExternal IDs
vendor: broadcom model: messaging
vendor: samsung model: mobile
vendor: samsung model: galaxy
vendor: samsung model: printers
vendor: samsung model: samsung galaxy
vendor: apple model: macos
vendor: apple model: watchos
vendor: ubiquiti model: unifi
vendor: citrix model: netscaler
vendor: google model: home
vendor: google model: wifi
vendor: citrix systems model: netscaler
vendor: lenovo model: updates
vendor: lenovo model: system
vendor: tp-link model: routers
db: NVD ids: CVE-2023-41721, CVE-2023-37679, CVE-2023-38831, CVE-2023-43208, CVE-2023-4966, CVE-2023-34048, CVE-2023-27997

India Signals High Alert on Samsung Device Vulnerabilities

Trust: 4.5

Fetched: Jan. 21, 2024, 9:33 a.m., Published: Dec. 15, 2023, 8:38 a.m.
 Vulnerabilities: buffer overflow, privilege escalation, code execution
Affected productsExternal IDs
vendor: samsung model: mobile
vendor: samsung model: note
vendor: samsung model: galaxy
vendor: google model: google chrome
vendor: google model: chrome
vendor: google model: android

Critical Juniper Networks RCE bug impacts heaps of devices • The Register

Trust: 4.5

Fetched: Jan. 21, 2024, 9:27 a.m., Published: -
 Vulnerabilities: denial of service, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2024-21591