Sign-up

VARIoT news about IoT security

VMware Workstation 17.0.x < 17.5.2 Multiple Vulnerabiliti... - vulnerability database | Vulners.com

Trust: 5.25

Fetched: May 22, 2024, 10:49 a.m., Published: May 16, 2024, midnight
 Vulnerabilities: information disclosure
Affected productsExternal IDs
db: NVD ids: CVE-2024-22270, CVE-2024-22269, CVE-2024-22268, CVE-2024-22267

Vulnerability Summary for the Week of November 14, 2022 | CISA

Related entries in the VARIoT vulnerabilities database: VAR-202211-0836, VAR-202211-1257, VAR-202211-0835, VAR-202211-0796, VAR-202211-0552, VAR-202211-1267, VAR-202211-0831, VAR-202211-0550, VAR-202211-0551, VAR-202211-0610, VAR-202211-1437, VAR-202211-1308, VAR-202211-0717, VAR-202211-1383, VAR-202211-0563, VAR-202211-0561, VAR-202211-0962, VAR-202211-0718, VAR-202211-0652

Trust: 5.25

Fetched: May 22, 2024, 10:45 a.m., Published: Nov. 14, 2022, midnight
 Vulnerabilities: application crash, kernel panic, request forgery...
Affected productsExternal IDs
vendor: cisco model: adaptive security appliance
vendor: cisco model: cisco adaptive security appliance
vendor: cisco model: series
vendor: cisco model: quad
vendor: cisco model: router
vendor: cisco model: firepower management center
vendor: cisco model: firepower
vendor: cisco model: firepower threat defense
vendor: cisco model: intrusion prevention system
vendor: cisco model: fxos
vendor: cisco model: cisco firepower management center
vendor: google model: wifi
vendor: google model: android
vendor: d-link model: router
vendor: opc foundation model: local_discovery_server
vendor: opc foundation model: local discovery server
vendor: dlink model: router
vendor: horner model: cscape
vendor: zoom model: zoom client
vendor: zoom model: client
vendor: horner automation model: cscape
vendor: maradns model: maradns
vendor: apple model: macos
vendor: apple model: mdnsresponder
vendor: snort model: snort
vendor: zoho model: manageengine supportcenter plus
db: NVD ids: CVE-2022-42894, CVE-2022-41894, CVE-2022-39178, CVE-2022-42960, CVE-2022-36357, CVE-2022-4065, CVE-2022-41132, CVE-2022-41692, CVE-2022-44007, CVE-2022-39317, CVE-2022-30772, CVE-2022-3997, CVE-2022-31617, CVE-2022-41315, CVE-2022-39389, CVE-2022-43999, CVE-2022-29275, CVE-2022-43482, CVE-2022-20922, CVE-2022-41887, CVE-2022-20946, CVE-2021-31739, CVE-2022-42497, CVE-2022-42732, CVE-2022-20459, CVE-2022-41155, CVE-2022-41634, CVE-2022-41938, CVE-2022-43071, CVE-2022-45461, CVE-2022-42734, CVE-2021-31608, CVE-2022-40694, CVE-2022-28766, CVE-2022-40200, CVE-2022-38871, CVE-2022-40192, CVE-2022-41643, CVE-2022-23748, CVE-2022-31613, CVE-2022-41889, CVE-2022-42891, CVE-2022-41652, CVE-2022-44584, CVE-2022-41891, CVE-2022-31606, CVE-2022-24037, CVE-2022-42459, CVE-2022-20943, CVE-2022-44008, CVE-2022-20918, CVE-2022-45163, CVE-2022-41840, CVE-2022-29278, CVE-2022-41914, CVE-2022-43096, CVE-2022-41880, CVE-2022-41888, CVE-2022-38974, CVE-2022-20427, CVE-2022-41909, CVE-2022-45471, CVE-2022-36432, CVE-2022-41885, CVE-2022-41907, CVE-2022-38461, CVE-2022-30771, CVE-2022-44725, CVE-2022-24942, CVE-2022-20949, CVE-2022-44005, CVE-2022-44740, CVE-2022-20460, CVE-2022-43192, CVE-2022-36787, CVE-2022-42461, CVE-2022-43492, CVE-2022-41884, CVE-2022-45369, CVE-2022-45072, CVE-2022-34665, CVE-2022-24939, CVE-2022-40886, CVE-2021-33897, CVE-2022-20928, CVE-2022-41135, CVE-2022-42892, CVE-2022-41897, CVE-2022-45474, CVE-2022-41896, CVE-2022-41886, CVE-2022-41890, CVE-2022-41655, CVE-2022-41901, CVE-2022-41900, CVE-2022-42903, CVE-2022-41883, CVE-2022-31612, CVE-2022-31607, CVE-2022-30283, CVE-2022-20941, CVE-2022-34827, CVE-2022-38165, CVE-2022-43171, CVE-2021-37936, CVE-2022-31615, CVE-2022-42733, CVE-2022-3998, CVE-2022-42893, CVE-2022-41788, CVE-2022-44583, CVE-2022-36786, CVE-2022-44634, CVE-2022-41895, CVE-2022-39320, CVE-2022-41899, CVE-2022-41618, CVE-2022-29279, CVE-2022-44641, CVE-2022-42883, CVE-2021-36905, CVE-2022-36785, CVE-2022-38201, CVE-2022-36924, CVE-2022-40216, CVE-2022-20927, CVE-2022-29276, CVE-2022-20950, CVE-2022-36784, CVE-2022-20934, CVE-2022-30256, CVE-2022-45082, CVE-2022-40963, CVE-2022-45071, CVE-2022-41920, CVE-2022-41615, CVE-2022-24038, CVE-2022-43308, CVE-2022-41908, CVE-2022-4055, CVE-2022-42982, CVE-2022-45132, CVE-2022-3377, CVE-2022-41911, CVE-2022-41685, CVE-2022-42533, CVE-2022-43673, CVE-2022-20938, CVE-2022-44204, CVE-2022-20924, CVE-2022-4066, CVE-2022-41839, CVE-2022-41939, CVE-2022-41791, CVE-2022-41898, CVE-2022-34667, CVE-2022-20947, CVE-2022-31694, CVE-2022-37197, CVE-2022-20940, CVE-2022-44000, CVE-2022-20926, CVE-2022-31608, CVE-2022-29277, CVE-2022-41781, CVE-2022-31610, CVE-2022-28768, CVE-2022-42904, CVE-2022-3090, CVE-2022-45473, CVE-2022-45073, CVE-2022-41893, CVE-2022-20428, CVE-2021-22141, CVE-2022-4051, CVE-2022-42698, CVE-2022-25917, CVE-2022-4064, CVE-2022-20925, CVE-2022-39181, CVE-2022-31616

ClamAV OLE2 File Format Parsing Denial of Service Vulnerability

Trust: 4.75

Fetched: May 22, 2024, 10:45 a.m., Published: Feb. 13, 2024, 5:57 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: clamav model: clamav
vendor: cisco model: clamav

Apple devices: CERT-In warns of critical vulnerability in Apple devices; Here's how you can reduce the risk - The Economic Times

Trust: 3.0

Fetched: May 22, 2024, 10:44 a.m., Published: May 6, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad air
vendor: apple model: macos
vendor: apple model: iphone
vendor: apple model: ipad
vendor: apple model: safari

CVE-2023-52871 soc: qcom: llcc: Handle a second device witho... - vulnerability database | Vulners.com

Trust: 3.25

Fetched: May 22, 2024, 10:43 a.m., Published: May 21, 2024, 3:32 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2023-52871

What is CVE? Common Vulnerabilities and Exposures | Splunk

Trust: 5.5

Fetched: May 22, 2024, 10:43 a.m., Published: May 24, 2024, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: google model: chrome
vendor: google model: google chrome
db: NVD ids: CVE-2022-44702, CVE-2019-0709

ERROR: The request could not be satisfied

Trust: 3.25

Fetched: May 22, 2024, 10:38 a.m., Published: -
 Vulnerabilities: configuration error
Affected productsExternal IDs

Cyber Defense Magazine names Forward Networks a Market Leader in Vulnerability Assessment, Remediation and Management at 12th annual Global Infosec Awards - Forward Networks

Trust: 3.0

Fetched: May 22, 2024, 10:37 a.m., Published: May 15, 2024, 8:40 p.m.
 Vulnerabilities: -
Affected productsExternal IDs

Palo Alto Networks Security Advisories

Related entries in the VARIoT vulnerabilities database: VAR-202405-0458

Trust: 4.25

Fetched: May 22, 2024, 10:36 a.m., Published: May 1, 2024, midnight
 Vulnerabilities: denial of service, os command injection, privilege management vulnerability...
Affected productsExternal IDs
vendor: palo alto networks model: pan-os
vendor: palo alto networks model: networks
vendor: palo alto networks model: firewall
vendor: palo model: pan-os
vendor: palo model: networks
vendor: palo model: firewall
db: NVD ids: CVE-2024-3383, CVE-2024-0008, CVE-2024-0011, CVE-2024-21626, CVE-2024-3385, CVE-2024-3661, CVE-2024-3382, CVE-2024-23653, CVE-2024-3094, CVE-2023-6790, CVE-2024-0007, CVE-2024-3386, CVE-2024-23651, CVE-2024-0010, CVE-2024-0009, CVE-2024-2432, CVE-2024-23652, CVE-2023-48795, CVE-2024-3388, CVE-2024-2433, CVE-2024-3400, CVE-2024-2431, CVE-2024-3384, CVE-2024-3387

Smart Yet Flawed: IoT Device Vulnerabilities Explained - Security News - Trend Micro NL

Related entries in the VARIoT vulnerabilities database: VAR-202003-1707

Trust: 4.25

Fetched: May 22, 2024, 10:35 a.m., Published: -
 Vulnerabilities: denial of service, default credentials
Affected productsExternal IDs
vendor: sonos model: sonos
vendor: trend micro model: internet security
vendor: trend micro model: security
vendor: trend micro model: home network security
vendor: trend model: internet security
vendor: trend model: security
vendor: trend model: home network security
db: NVD ids: CVE-2020-9054

Ransomware crooks are targeting vulnerable VPN devices in their attacks | ZDNET

Related entries in the VARIoT vulnerabilities database: VAR-201906-0815

Trust: 3.0

Fetched: May 22, 2024, 10:31 a.m., Published: May 5, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2018-13379

Security Advisory | Rockwell Automation

Related entries in the VARIoT vulnerabilities database: VAR-201810-0569

Trust: 5.75

Fetched: May 22, 2024, 10:28 a.m., Published: May 22, 8300, midnight
 Vulnerabilities: memory leak
Affected productsExternal IDs
vendor: cisco model: ios xe
vendor: cisco model: ios xe software
vendor: cisco model: industrial ethernet
vendor: cisco model: cisco ios xe
vendor: cisco model: cisco ios
vendor: cisco model: ios software
db: NVD ids: CVE-2018-15377
db: CISCO ids: CISCO-SA-20180926-PNP

ICSMA-23-117-01, CVE-2023-1968: Critical Vulnerabilities in Illumina Universal Copy Service Could Allow Remote Code Execution | Armis

Trust: 5.25

Fetched: May 22, 2024, 10:27 a.m., Published: Oct. 25, 2023, 5:32 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2023-1968, CVE-2023-1966

The current state and future of mobile security in the light of the recent mobile security threat reports - PMC

Trust: 3.5

Fetched: May 22, 2024, 10:25 a.m., Published: May 22, 2023, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: trendmicro model: security
vendor: sonicwall model: remote access
vendor: apple model: webkit
vendor: apple model: iphone
vendor: google model: home
vendor: google model: android
vendor: google model: wifi
vendor: check point model: check point

The Security Vulnerabilities of Smart Devices | HackerNoon

Trust: 3.75

Fetched: May 22, 2024, 10:25 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: home

GarrettCom Magnum Series Devices Vulnerabilities | CISA

Related entries in the VARIoT vulnerabilities database: VAR-201508-0389, VAR-201508-0387, VAR-201508-0390, VAR-201508-0388

Trust: 4.5

Fetched: May 22, 2024, 10:25 a.m., Published: May 22, 2023, midnight
 Vulnerabilities: denial of service, cross-site scripting, memory corruption
Affected productsExternal IDs
vendor: garrettcom model: magnum 6k
vendor: garrettcom model: magnum 10k
db: NVD ids: CVE-2015-3960, CVE-2015-3942, CVE-2015-3961, CVE-2015-3959

Medical Device Vulnerabilities Archives - Health-ISAC - Health Information Sharing and Analysis Center

Trust: 3.0

Fetched: May 22, 2024, 10:24 a.m., Published: May 22, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: philips model: veradius unity
vendor: philips model: endura
vendor: philips model: pulsera

IoT Security Foundation launches vulnerability platform | TechTarget

Trust: 3.5

Fetched: May 22, 2024, 10:23 a.m., Published: May 22, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: home

What are the Top Firewall Vulnerabilities and Threats? - zenarmor.com

Trust: 3.5

Fetched: May 22, 2024, 10:22 a.m., Published: Jan. 17, 2003, midnight
 Vulnerabilities: weak password, denial of service
Affected productsExternal IDs

Top 10 IoT Device Vulnerabilities to Enhance IoT Security - Host Duplex Blog

Trust: 3.5

Fetched: May 22, 2024, 10:20 a.m., Published: Feb. 19, 2024, 2 p.m.
 Vulnerabilities: cross-site scripting, sql injection
Affected productsExternal IDs