Sign-up

VARIoT news about IoT security

IoT Security: A Call to Action for Improved Vulnerability Disclosure

Trust: 4.5

Fetched: Aug. 16, 2024, 10:08 a.m., Published: Aug. 11, 2024, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: huawei model: huawei

Microsoft patches CVE-2024-38063 IPv6 RCE vulnerability • The Register

Trust: 5.75

Fetched: Aug. 16, 2024, 10:07 a.m., Published: -
 Vulnerabilities: cross-site scripting, code execution, memory corruption...
Affected productsExternal IDs
vendor: ahnlab model: engine
db: NVD ids: CVE-2024-38166, CVE-2024-38107, CVE-2024-38199, CVE-2024-38193, CVE-2024-38200, CVE-2024-38189, CVE-2024-38106, CVE-2024-21302, CVE-2024-38202, CVE-2024-38160, CVE-2024-38140, CVE-2024-38109, CVE-2024-38178, CVE-2024-38213, CVE-2024-41730, CVE-2024-38159, CVE-2024-38206, CVE-2024-38063

CVE-2024-6387 - Openssh vulnerability - Jamf Nation Community - 319302

Trust: 4.25

Fetched: Aug. 16, 2024, 10:07 a.m., Published: July 2, 2024, 8:25 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: macos
db: NVD ids: CVE-2024-6387

New Windows vulnerability could repeatedly trigger the blue screen of death on millions of devices | ITPro

Trust: 3.0

Fetched: Aug. 16, 2024, 10:06 a.m., Published: Aug. 12, 2024, 6 p.m.
 Vulnerabilities: code execution, system crash, privilege escalation...
Affected productsExternal IDs
db: NVD ids: CVE-2024-6768

How Mathematics Keeps Your IoT Device Safe

Trust: 3.5

Fetched: Aug. 16, 2024, 10:05 a.m., Published: Aug. 15, 2024, 1 p.m.
 Vulnerabilities: system crash
Affected productsExternal IDs
vendor: trend model: security
vendor: dram model: dram

Google Pixel affected by long-time vulnerability from 2017

Trust: 4.75

Fetched: Aug. 16, 2024, 10:04 a.m., Published: Aug. 16, 2017, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: software update
vendor: apple model: iphone
vendor: apple model: ipad
vendor: google model: pixel
vendor: google model: android

Google Pixel Phones Have Major Security Loophole - channelnews

Trust: 3.75

Fetched: Aug. 16, 2024, 10:03 a.m., Published: Aug. 16, 2024, midnight
 Vulnerabilities: code injection
Affected productsExternal IDs
vendor: google model: pixel
vendor: google model: android

Exploitable bloatware puts millions of Google Pixel users at risk

Trust: 3.0

Fetched: Aug. 16, 2024, 10:03 a.m., Published: Aug. 9, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: pixel

Microsoft's AI Health Bot required patching for privilege vulnerability | Healthcare IT News

Trust: 5.0

Fetched: Aug. 16, 2024, 10:02 a.m., Published: Aug. 14, 2024, 7:15 p.m.
 Vulnerabilities: request forgery
Affected productsExternal IDs
db: NVD ids: CVE-2024-38098

Millions of Pixel devices can be hacked due to a pre-installed vulnerable app

Trust: 3.75

Fetched: Aug. 16, 2024, 10:02 a.m., Published: Aug. 16, 2024, 8:19 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: software update
vendor: google model: pixel
vendor: google model: android

Your Pixel Has a Dangerous Security Vulnerability Baked Into Its Firmware | Lifehacker

Trust: 3.5

Fetched: Aug. 16, 2024, 10:01 a.m., Published: Aug. 15, 2024, 10 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: software update
vendor: apple model: iphone
vendor: google model: pixel
vendor: google model: android

Millions of Google Pixels have shipped with a major security flaw

Trust: 3.75

Fetched: Aug. 16, 2024, 9:59 a.m., Published: Aug. 15, 2024, 9:37 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: watch
vendor: apple model: software update
vendor: google model: pixel
vendor: google model: android

About the security content of AirPods Firmware Update 6A326, AirPods Firmware Update 6F8, and Beats Firmware Update 6F8 - Apple Support

Trust: 5.0

Fetched: Aug. 16, 2024, 9:59 a.m., Published: June 25, 2024, midnight
 Vulnerabilities: authentication issue
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: ipad
db: NVD ids: CVE-2024-27867

[no-title]

Trust: 5.5

Fetched: Aug. 16, 2024, 9:58 a.m., Published: -
 Vulnerabilities: memory corruption, code execution
Affected productsExternal IDs
vendor: sonos model: sonos
db: NVD ids: CVE-2023-50810, CVE-2024-20018

Ivanti Sentry Vulnerability Analysis & Insights| Darktrace | Darktrace Blog

Trust: 4.25

Fetched: Aug. 16, 2024, 9:57 a.m., Published: Jan. 1, 2024, midnight
 Vulnerabilities: authentication bypass, code execution
Affected productsExternal IDs
vendor: mobileiron model: mobileiron sentry
vendor: mobileiron model: sentry
db: NVD ids: CVE-2023-35078, CVE-2023-35081, CVE-2023-38035

A Look at the Riskiest Connected Devices of 2024

Trust: 3.5

Fetched: Aug. 16, 2024, 9:54 a.m., Published: Aug. 16, 2024, midnight
 Vulnerabilities: default credentials
Affected productsExternal IDs

Update now! Google Pixel vulnerability is under active exploitation | Malwarebytes

Trust: 3.75

Fetched: Aug. 16, 2024, 9:54 a.m., Published: June 13, 2024, 1:33 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: pixel
vendor: google model: android
db: NVD ids: CVE-2024-32896

Report: Google Pixel phones sold with hidden surveillance software - The Verge

Trust: 3.75

Fetched: Aug. 16, 2024, 9:48 a.m., Published: Aug. 15, 2024, 5:12 p.m.
 Vulnerabilities: code injection
Affected productsExternal IDs
vendor: google model: pixel
vendor: google model: android

Google Qualcomm Vulnerability: Risks And Implications For Android Devices | Mobile Telco

Trust: 3.0

Fetched: Aug. 16, 2024, 9:46 a.m., Published: Aug. 12, 2024, 6:34 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Your Phone's 5G Connection Is Vulnerable to Bypass, DoS Attacks

Trust: 3.0

Fetched: Aug. 16, 2024, 9:46 a.m., Published: Aug. 5, 2024, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs