Sign-up

VARIoT news about IoT security

Testy penetracyjne - inżynieria oprogramowania - GeeksforGeeks

Trust: 3.25

Fetched: June 19, 2024, 9:52 a.m., Published: May 9, 2019, 6:38 a.m.
 Vulnerabilities: cross-site scripting, sql injection
Affected productsExternal IDs
vendor: wireshark model: wireshark
vendor: roku model: roku

VMware vCenter Server Patches Multiple Vulnerabilities - TechNadu

Trust: 4.75

Fetched: June 19, 2024, 9:51 a.m., Published: June 18, 2024, 11:25 a.m.
 Vulnerabilities: code execution, privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2024-37080, CVE-2024-37081, CVE-2024-37079

Security Advisories | WatchGuard Technologies

Related entries in the VARIoT vulnerabilities database: VAR-201906-1176, VAR-201808-0959, VAR-202405-0458, VAR-202112-0566, VAR-201912-0930, VAR-201808-0957, VAR-202203-1506, VAR-201808-0958, VAR-201906-1174, VAR-202203-0005, VAR-201906-1175

Trust: 4.75

Fetched: June 19, 2024, 9:51 a.m., Published: -
 Vulnerabilities: buffer overflow, privilege escalation, cross-site scripting...
Affected productsExternal IDs
vendor: watchguard model: firebox
db: NVD ids: CVE-2023-6331, CVE-2022-3786, CVE-2019-11478, CVE-2018-3615, CVE-2023-25136, CVE-2022-25362, CVE-2022-3602, CVE-2022-25293, CVE-2024-3661, CVE-2024-3094, CVE-2024-21893, CVE-2024-1417, CVE-2022-25360, CVE-2002-20001, CVE-2022-31792, CVE-2022-25292, CVE-2023-38802, CVE-2020-15078, CVE-2022-41556, CVE-2022-1292, CVE-2022-23176, CVE-2021-44228, CVE-2024-21888, CVE-2022-31749, CVE-2019-14899, CVE-2022-26318, CVE-2018-3646, CVE-2022-25290, CVE-2023-46805, CVE-2023-26239, CVE-2022-22965, CVE-2018-3620, CVE-2023-41358, CVE-2021-4034, CVE-2022-25363, CVE-2023-4863, CVE-2019-11479, CVE-2022-0778, CVE-2019-11477, CVE-2024-21887, CVE-2022-40735, CVE-2023-50164, CVE-2023-26238, CVE-2022-31790, CVE-2022-31789, CVE-2023-26236, CVE-2023-6332, CVE-2022-25291, CVE-2022-25361, CVE-2023-6330, CVE-2023-2357, CVE-2023-26237

System BIOS komputerów Dell Vostro 3525/3425 oraz Inspiron 15 3525 | Szczegóły sterownika | Dell Polska

Trust: 3.0

Fetched: June 19, 2024, 9:50 a.m., Published: June 13, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios

Dell Inspiron 3521 System BIOS | Szczegóły sterownika | Dell Polska

Trust: 3.25

Fetched: June 19, 2024, 9:50 a.m., Published: June 19, 3521, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios

System BIOS komputera Dell Precision 5530 | Szczegóły sterownika | Dell Polska

Trust: 3.0

Fetched: June 19, 2024, 9:50 a.m., Published: June 19, 5530, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios
vendor: dell model: precision 5530

Google's Android Update: Addressing Security Threats for Pixel Devices - agaiti.com

Trust: 4.75

Fetched: June 19, 2024, 9:50 a.m., Published: June 14, 2024, midnight
 Vulnerabilities: buffer overflow, code execution
Affected productsExternal IDs
vendor: google model: android
vendor: google model: pixel
db: NVD ids: CVE-2023-0813

What is Vulnerability Assessment? | Vulnerability Scanners

Trust: 4.5

Fetched: June 19, 2024, 9:48 a.m., Published: May 28, 2024, 7:12 p.m.
 Vulnerabilities: file inclusion, sql injection, code execution...
Affected productsExternal IDs
vendor: comodo model: firewall

A Denial of Service vulnerability threatens the availability of virtual Domain Controllers on VMware ESXi (VMSA-2024-0011, Important, CVE-2024-22273) - The things that are better left unspoken

Trust: 5.0

Fetched: June 19, 2024, 9:42 a.m., Published: May 22, 2024, 8:46 a.m.
 Vulnerabilities: privilege escalation, denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2024-22273

High-severity flaw affects Cisco Firepower Management Center

Trust: 6.0

Fetched: June 19, 2024, 9:41 a.m., Published: May 27, 2024, 6:58 a.m.
 Vulnerabilities: sql injection
Affected productsExternal IDs
vendor: cisco model: firepower management center
vendor: cisco model: cisco firepower management center
vendor: cisco model: firepower
vendor: cisco model: adaptive security appliance
vendor: cisco model: firepower threat defense
db: NVD ids: CVE-2024-20360

CVE-2024-21833 Security Vulnerability TP-Link - TPG Community

Trust: 5.5

Fetched: June 19, 2024, 9:41 a.m., Published: June 19, 2024, 1:55 a.m.
 Vulnerabilities: command injection, os command injection
Affected productsExternal IDs
vendor: tp-link model: routers
vendor: huawei model: huawei
db: NVD ids: CVE-2024-21833

Log4j2 vulnerability (CVE-2021-44228, CVE-2021-45046 and CVE-2021-45105) information and mitigation steps for on-premises manager and LiveUpdate Administrator

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566, VAR-202112-1782, VAR-202112-2011, VAR-201912-0889, VAR-202112-0562

Trust: 6.0

Fetched: June 19, 2024, 9:36 a.m., Published: March 23, 2059, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: symantec model: symantec endpoint protection
vendor: symantec model: endpoint protection
vendor: symantec model: liveupdate
db: NVD ids: CVE-2021-4104, CVE-2022-23302, CVE-2022-23307, CVE-2021-44228, CVE-2023-26464, CVE-2022-23305, CVE-2020-9488, CVE-2021-45105, CVE-2021-44832, CVE-2019-17571, CVE-2021-45046

Google Chrome Gets 6 Security Fixes to Patch High-Severity Vulnerabilities

Trust: 5.75

Fetched: June 19, 2024, 9:35 a.m., Published: May 22, 2024, 12:01 p.m.
 Vulnerabilities: buffer overflow, memory corruption, use after free
Affected productsExternal IDs
vendor: google model: google chrome
vendor: google model: chrome
db: NVD ids: CVE-2024-5160, CVE-2024-5158, CVE-2024-5157, CVE-2024-4671, CVE-2024-5159

New Wi-Fi Takeover Attack-All Windows Users Warned To Update Now

Trust: 3.25

Fetched: June 19, 2024, 9:28 a.m., Published: June 17, 2024, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2024-30078

Response to vulnerabilities in Toshiba Tec's digital multi-function peripherals

Trust: 3.5

Fetched: June 19, 2024, 9:27 a.m., Published: -
 Vulnerabilities: command injection, authentication bypass, default credentials...
Affected productsExternal IDs
db: NVD ids: CVE-2024-27171, CVE-2024-27176, CVE-2024-27164, CVE-2024-27179, CVE-2024-27173, CVE-2024-27165, CVE-2024-27141, CVE-2024-27151, CVE-2024-27162, CVE-2024-27152, CVE-2024-27156, CVE-2024-27169, CVE-2024-27153, CVE-2024-27154, CVE-2024-27168, CVE-2024-27178, CVE-2024-3496, CVE-2024-3497, CVE-2024-27146, CVE-2024-27174, CVE-2024-27157, CVE-2024-27155, CVE-2024-27167, CVE-2024-27175, CVE-2024-27160, CVE-2024-27147, CVE-2024-27170, CVE-2024-27148, CVE-2024-27143, CVE-2024-27163, CVE-2024-27142, CVE-2024-27158, CVE-2024-27172, CVE-2024-27150, CVE-2024-27180, CVE-2024-3498, CVE-2024-27166, CVE-2024-27159, CVE-2024-27144, CVE-2024-7145, CVE-2024-27161, CVE-2024-27149

Taiwan IT Authority Report Telnet Backdoor Vulnerability in D-Link Routers

Trust: 3.0

Fetched: June 19, 2024, 9:27 a.m., Published: June 19, 2024, 6:28 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: d-link model: router

Android and Google Devices Security Reward Program Rules - Rules - About - Google Bug Hunters

Trust: 4.5

Fetched: June 19, 2024, 9:26 a.m., Published: -
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: nest model: nest cam
vendor: nest model: learning thermostat
vendor: google model: android
vendor: google model: wifi
vendor: google model: chromecast
vendor: google model: pixel

OWASP Mobile Top 10 2024 Vulnerabilities | Indusface Blog

Trust: 3.5

Fetched: June 19, 2024, 9:13 a.m., Published: June 5, 2024, 5:03 a.m.
 Vulnerabilities: cross-site scripting, command injection, sql injection
Affected productsExternal IDs
vendor: essential model: phone

CVE-2023-52424: New WiFi Flaw Leaves All Devices Vulnerable to 'SSID Confusion' Attacks

Trust: 4.75

Fetched: June 19, 2024, 9:12 a.m., Published: May 15, 2024, 2:56 a.m.
 Vulnerabilities: traffic interception
Affected productsExternal IDs
vendor: mesh model: mesh
db: NVD ids: CVE-2023-52424

Zero-Day Vulnerability CVE-2024-24919 | Security Advisory 2024

Trust: 5.75

Fetched: June 18, 2024, 9:33 a.m., Published: June 4, 2024, 4:47 p.m.
 Vulnerabilities: information disclosure
Affected productsExternal IDs
vendor: check point model: security gateway
vendor: check point model: check point
vendor: check point model: quantum security gateway
vendor: check point model: check point vpn
db: NVD ids: CVE-2024-24919