Sign-up

VARIoT news about IoT security

Navigating the Cybersecurity Maze: Unraveling the Delta InfraSuite Device Master Vulnerabilities

Trust: 4.5

Fetched: Dec. 15, 2023, 9:31 a.m., Published: Dec. 3, 2023, midnight
 Vulnerabilities: path traversal, improper access control, command injection...
Affected productsExternal IDs
db: NVD ids: CVE-2023-1143, CVE-2023-1134, CVE-2023-1141, CVE-2023-47279, CVE-2023-1137, CVE-2023-47207, CVE-2023-39226

Samsung users alert! Government warns against THIS critical risk: Here's how to stay safe | Mint

Trust: 3.5

Fetched: Dec. 15, 2023, 9:26 a.m., Published: Dec. 15, 2023, midnight
 Vulnerabilities: memory corruption, buffer overflow, integer overflow
Affected productsExternal IDs
vendor: samsung model: knox
vendor: samsung model: mobile
vendor: samsung model: galaxy
vendor: samsung model: samsung mobile
vendor: samsung model: samsung galaxy

10 Network Security Threats Everyone Should Know | eSP

Trust: 3.5

Fetched: Dec. 15, 2023, 9:25 a.m., Published: March 16, 2023, 11:21 p.m.
 Vulnerabilities: brute force attack, denial of service, cross-site scripting
Affected productsExternal IDs

IoT malware: An attribute-based taxonomy, detection mechanisms and challenges | Peer-to-Peer Networking and Applications

Related entries in the VARIoT vulnerabilities database: VAR-202007-1393

Trust: 4.25

Fetched: Dec. 15, 2023, 9:22 a.m., Published: May 1, 2023, midnight
 Vulnerabilities: default password, command injection, denial of service...

What Is a Man-in-the Middle (MITM) Attack? Types & Examples | Fortinet

Trust: 3.75

Fetched: Dec. 15, 2023, 9:11 a.m., Published: Dec. 15, 2023, midnight
 Vulnerabilities: session hijacking
Affected productsExternal IDs

Microsoft patches 34 vulnerabilities, including one zero-day | Malwarebytes

Trust: 6.0

Fetched: Dec. 15, 2023, 9:10 a.m., Published: Dec. 13, 2023, 4:39 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2023-50164, CVE-2023-35628

This is how to protect your computers from LogoFAIL attacks | ZDNET

Trust: 4.5

Fetched: Dec. 15, 2023, 9:09 a.m., Published: Dec. 7, 2023, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: dell model: bios
vendor: lenovo model: updates
vendor: lenovo model: system
vendor: lenovo model: bios
vendor: apple model: iphone
vendor: apple model: ipad

The Evolution of Cybersecurity: Navigating Challenges in the Coming Tech Landscape - TechBullion

Trust: 3.75

Fetched: Dec. 13, 2023, 9:45 a.m., Published: Dec. 1, 2023, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs

Top 100+ Cyber Security Interview Questions and Answers

Trust: 3.5

Fetched: Dec. 13, 2023, 9:43 a.m., Published: Dec. 4, 2023, 11:38 a.m.
 Vulnerabilities: denial of service, brute force attack, cross-site scripting...
Affected productsExternal IDs
vendor: wireshark model: wireshark

Kali Linux Penetration Testing (Advanced) Schulung

Trust: 3.25

Fetched: Dec. 13, 2023, 9:43 a.m., Published: Nov. 15, 2023, midnight
 Vulnerabilities: buffer overflow
Affected productsExternal IDs

Researchers Exploited GOG Galaxy XPC Service in macOS

Trust: 4.0

Fetched: Dec. 13, 2023, 9:41 a.m., Published: Dec. 9, 2023, 6:38 a.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2023-40713

23-055 (December 12, 2023) - Threat Encyclopedia

Trust: 3.75

Fetched: Dec. 13, 2023, 9:40 a.m., Published: Dec. 12, 2023, midnight
 Vulnerabilities: denial of service, sql injection, path traversal...
Affected productsExternal IDs
db: NVD ids: CVE-2023-22273, CVE-2023-22275, CVE-2023-35187, CVE-2023-44371, CVE-2023-22272, CVE-2023-48646, CVE-2019-6445, CVE-2023-35185, CVE-2019-6443, CVE-2023-42123

Dell Latitude 7210 2-in-1 System BIOS | Szczegóły sterownika | Dell Polska

Trust: 3.0

Fetched: Dec. 13, 2023, 9:39 a.m., Published: Feb. 13, 7210, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: latitude
vendor: dell model: bios

CISA finally removes dud vulnerability from must-patch list • The Register

Related entries in the VARIoT vulnerabilities database: VAR-202205-1480, VAR-202205-1549, VAR-202205-1571

Trust: 4.75

Fetched: Dec. 13, 2023, 9:38 a.m., Published: -
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: d-link model: router
vendor: d-link model: dir-816l
db: NVD ids: CVE-2022-28956, CVE-2022-28955, CVE-2022-28958

IT security update November 2023: Critical vulnerabilities and threats - Greenbone

Trust: 5.25

Fetched: Dec. 13, 2023, 9:36 a.m., Published: Nov. 22, 2023, 10:24 a.m.
 Vulnerabilities: authentication bypass, privilege escalation, sql injection...
Affected productsExternal IDs
vendor: palo alto networks model: firewall
vendor: palo alto networks model: networks
vendor: palo model: firewall
vendor: palo model: networks
vendor: cisco model: ios xe
vendor: cisco model: security manager
vendor: cisco model: ios xe software
vendor: cisco model: cisco ios
vendor: cisco model: routers
vendor: cisco model: cisco ios xe
vendor: snort model: snort
db: NVD ids: CVE-2023-20198, CVE-2023-38545, CVE-2023-35187, CVE-2023-20273, CVE-2023-46748, CVE-2023-46747, CVE-2023-34048, CVE-2023-35182, CVE-2023-0568, CVE-2023-34056, CVE-2023-0567, CVE-2023-35185, CVE-2023-3824

Dell Latitude 7290/7390/7490 System BIOS | Szczegóły sterownika | Dell Polska

Trust: 3.0

Fetched: Dec. 13, 2023, 9:36 a.m., Published: Dec. 11, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios
vendor: dell model: latitude
vendor: dell model: latitude 7290

System BIOS do komputerów Alienware m15/m17 R2 | Szczegóły sterownika | Dell Polska

Trust: 3.25

Fetched: Dec. 13, 2023, 9:35 a.m., Published: Dec. 8, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios

Dell G15 5525 System BIOS | Szczegóły sterownika | Dell Polska

Trust: 3.25

Fetched: Dec. 13, 2023, 9:34 a.m., Published: Dec. 8, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios

Electronics | Free Full-Text | Detection of Vulnerabilities in Smart Buildings Using the Shodan Tool

Related entries in the VARIoT vulnerabilities database: VAR-201706-1000

Trust: 5.0

Fetched: Dec. 13, 2023, 9:31 a.m., Published: Jan. 13, 2023, midnight
 Vulnerabilities: denial of service, code injection, side channel attack...
Affected productsExternal IDs
vendor: trend model: security
vendor: ecobee model: smart thermostat
vendor: belkin model: wemo switch
vendor: belkin model: router
vendor: essential model: phone
vendor: tp-link model: wr841n
vendor: tp-link model: routers
vendor: tp-link model: gateway
vendor: d-link model: d-link dcs-2121
vendor: d-link model: dcs-2121
vendor: d-link model: router
vendor: rapid model: scada
vendor: google model: wifi
vendor: google model: home
vendor: siemens model: ip camera
db: NVD ids: CVE-2018-1312, CVE-2019-0211, CVE-2018-17199, CVE-2017-15906, CVE-2017-7679, CVE-2019-0220, CVE-2018-15919

WinRAR CVE-2023-38831 Vulnerability: Malware Exploits & APT Attacks

Trust: 4.5

Fetched: Dec. 13, 2023, 9:25 a.m., Published: -
 Vulnerabilities: session hijacking, file execution, privilege escalation...
Affected productsExternal IDs
vendor: rarlab model: winrar
db: NVD ids: CVE-2023-38831