VARIoT latest news about IoT security

How to Test Web Application Security on Different Devices and Browsers Trust: 3.0 Fetched: Feb. 23, 2024, 10:13 a.m., Published: Feb. 3, 2024, midnight	Vulnerabilities: sql injection

Affected products	External IDs

How Do I Power Cycle My Neeo Remote? - ByRetreat Trust: 3.5 Fetched: Feb. 23, 2024, 10:12 a.m., Published: Jan. 28, 2024, 4:21 p.m.	Vulnerabilities: default credentials

Affected products	External IDs

What Is the Best Method of Lighting Control? - ByRetreat Trust: 3.5 Fetched: Feb. 23, 2024, 10:11 a.m., Published: Jan. 29, 2024, 6:18 a.m.	Vulnerabilities: default credentials

Affected products	External IDs

Do I Need an Electrician for a Smart Home? - ByRetreat Trust: 3.5 Fetched: Feb. 23, 2024, 10:10 a.m., Published: Jan. 26, 2024, 3:25 p.m.	Vulnerabilities: default credentials

Affected products	External IDs

What Is a Rako System? - ByRetreat Trust: 3.5 Fetched: Feb. 23, 2024, 10:08 a.m., Published: Jan. 26, 2024, 6:58 p.m.	Vulnerabilities: default credentials

Affected products	External IDs

CISA Adds One Known Exploited Vulnerability to Catalog \| CISA Trust: 4.25 Fetched: Feb. 23, 2024, 10:08 a.m., Published: Feb. 23, 2023, midnight	Vulnerabilities: authentication vulnerability

Affected products

External IDs

db:

NVD

ids:

CVE-2022-48618

How Much Does It Cost to Install Home Automation System? - ByRetreat Trust: 3.5 Fetched: Feb. 23, 2024, 10:06 a.m., Published: Jan. 27, 2024, 6:56 p.m.	Vulnerabilities: default credentials

Affected products	External IDs

What Are the Disadvantages of Motion Sensor Lights? - ByRetreat Trust: 3.5 Fetched: Feb. 23, 2024, 10:04 a.m., Published: Jan. 26, 2024, 4:01 p.m.	Vulnerabilities: default credentials

Affected products	External IDs

New Vulnerability in Fortinet FortiOS Exposes Devices to Remote Code Execution Related entries in the VARIoT vulnerabilities database: VAR-202212-1132 Trust: 5.0 Fetched: Feb. 23, 2024, 10:02 a.m., Published: Feb. 19, 2024, 6:28 a.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:

ansible

model:

ansible

db:

NVD

ids:

CVE-2023-34992, CVE-2022-42475, CVE-2024-21762, CVE-2024-23108, CVE-2023-27997, CVE-2024-23109

Security Advisory for Post-Authentication Command Injection on the R7000, PSV-2023-0154 - NETGEAR Support Trust: 4.0 Fetched: Feb. 23, 2024, 10:02 a.m., Published: -	Vulnerabilities: command injection

Affected products

External IDs

vendor:	netgear	model:	orbi
vendor:	netgear	model:	r7000

Go Vulnerability Database - Go Packages Trust: 4.0 Fetched: Feb. 23, 2024, 10:01 a.m., Published: Feb. 20, 2024, midnight	Vulnerabilities: cross-site scripting

Affected products	External IDs

What Are the Advantages and Disadvantages of Smart Home? - ByRetreat Trust: 3.5 Fetched: Feb. 23, 2024, 9:59 a.m., Published: Jan. 31, 2024, 7:25 a.m.	Vulnerabilities: default credentials

Affected products	External IDs

What's the Difference Between Kasa and Tapo? - ByRetreat Trust: 3.5 Fetched: Feb. 23, 2024, 9:58 a.m., Published: Jan. 26, 2024, 2:49 p.m.	Vulnerabilities: default credentials

Affected products	External IDs

How Do I Integrate Nest Thermostat With Home Assistant? - ByRetreat Trust: 4.5 Fetched: Feb. 23, 2024, 9:56 a.m., Published: Jan. 31, 2024, 5:31 a.m.	Vulnerabilities: default credentials

Affected products

External IDs

vendor:

home assistant

model:

home assistant

New Wi-Fi Vulnerabilities Expose Android and Linux Devices to Hackers - Patabook Technology Trust: 4.25 Fetched: Feb. 23, 2024, 9:55 a.m., Published: Feb. 21, 2024, 10:41 p.m.	Vulnerabilities: authentication bypass

Affected products

External IDs

db:

NVD

ids:

CVE-2023-52160, CVE-2023-52161

Bluetooth Flaw: Multi-OS Takeover Risk! 🚨📱 - Impulsec Trust: 4.5 Fetched: Feb. 23, 2024, 9:54 a.m., Published: Jan. 17, 2024, 10:54 a.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:	google	model:	pixel
vendor:	google	model:	android
vendor:	apple	model:	macbook pro
vendor:	apple	model:	macbook
vendor:	apple	model:	iphone
vendor:	apple	model:	macbook air
vendor:	apple	model:	macos

db:

NVD

ids:

CVE-2024-21306, CVE-2023-45866

Does Bell Smart Home Work Without Internet? - ByRetreat Trust: 3.5 Fetched: Feb. 23, 2024, 9:48 a.m., Published: Jan. 29, 2024, 3:53 a.m.	Vulnerabilities: default credentials

Affected products	External IDs

What Thermostats Are Compatible With Savant? - ByRetreat Trust: 3.5 Fetched: Feb. 23, 2024, 9:46 a.m., Published: Jan. 29, 2024, 6:11 a.m.	Vulnerabilities: default credentials

Affected products	External IDs

DNSSEC vulnerability puts big chunk of the internet at risk • The Register Trust: 3.75 Fetched: Feb. 23, 2024, 9:45 a.m., Published: -	Vulnerabilities: denial of service

Affected products

External IDs

db:

NVD

ids:

CVE-2023-5679, CVE-2023-5517, CVE-2023-4408, CVE-2023-6516, CVE-2023-50387, CVE-2023-50868

Cisco Releases Security Advisory for Vulnerabilities in Cisco Expressway Series \| CISA Trust: 3.0 Fetched: Feb. 23, 2024, 9:44 a.m., Published: Feb. 23, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	series
vendor:	cisco	model:	expressway
vendor:	cisco	model:	cisco expressway
vendor:	cisco	model:	expressway series

VARIoT news about IoT security