VARIoT latest news about IoT security

Mobile Systems Vulnerabilities \| Infosec Trust: 4.5 Fetched: April 5, 2024, 9:05 a.m., Published: April 24, 2024, midnight	Vulnerabilities: denial of service

Affected products

External IDs

vendor:	google	model:	chrome
vendor:	google	model:	android

Cisco Fixed Critical CSRF Flaws in Expressway Gateways (CVE-2024-20252 and CVE-2024-20254) - SOCRadar® Cyber Intelligence Inc. Trust: 5.75 Fetched: April 3, 2024, 9:21 a.m., Published: Feb. 8, 2024, 1:14 p.m.	Vulnerabilities: request forgery, privilege escalation, cross-site scripting...

Affected products

External IDs

vendor:	cisco	model:	expressway series
vendor:	cisco	model:	expressway edge
vendor:	cisco	model:	cisco expressway
vendor:	cisco	model:	cisco telepresence
vendor:	cisco	model:	expressway
vendor:	cisco	model:	telepresence
vendor:	cisco	model:	series
vendor:	cisco	model:	telepresence video communication server

db:

NVD

ids:

CVE-2024-22239, CVE-2024-22237, CVE-2024-22238, CVE-2024-20254, CVE-2024-20255, CVE-2024-22240, CVE-2024-22241, CVE-2024-20252

What Is an Authentication Bypass Vulnerability? \| StrongDM Trust: 3.5 Fetched: April 3, 2024, 9:20 a.m., Published: April 4, 2024, midnight	Vulnerabilities: code execution, authentication bypass, brute force attack

Affected products

External IDs

vendor:

delegate

model:

delegate

Akira Ransomware Exploiting Cisco Anyconnect Vulnerability Related entries in the VARIoT vulnerabilities database: VAR-202005-0696 Trust: 4.25 Fetched: April 3, 2024, 9:19 a.m., Published: Feb. 19, 2024, 12:13 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

cisco

model:

anyconnect ssl vpn

db:

NVD

ids:

CVE-2020-3259

CVE-2024-20253 A vulnerability in multiple Cisco Unified Commu... Trust: 3.25 Fetched: April 3, 2024, 9:18 a.m., Published: Jan. 26, 2024, midnight	Vulnerabilities: -

Affected products

External IDs

db:

NVD

ids:

CVE-2024-20253

CISA Adds One Known Exploited ConnectWise Vulnerability, CVE-2024-1709, to Catalog \| CISA Trust: 3.0 Fetched: April 3, 2024, 9:18 a.m., Published: April 3, 2022, midnight	Vulnerabilities: authentication bypass

Affected products

External IDs

db:

NVD

ids:

CVE-2024-1709

CVE-2024-26653 : LINUX KERNEL UP TO 6.9-RC1 LJCA AUXILIARY_DEVICE_ADD DOUBLE FREE - Cloud WAF Trust: 3.25 Fetched: April 2, 2024, 9:50 a.m., Published: April 1, 2024, 9:49 a.m.	Vulnerabilities: memory corruption

Affected products

External IDs

db:

NVD

ids:

CVE-2024-26653

Hackers Exploit Windows SmartScreen Vulnerability Trust: 4.75 Fetched: April 2, 2024, 9:49 a.m., Published: March 15, 2024, 8:29 a.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:	apple	model:	itunes
vendor:	trend micro	model:	security
vendor:	trend	model:	security

db:

NVD

ids:

CVE-2023-36025, CVE-2024-21412

Beware of These Hardware Security Vulnerabilities \| WCI Technology Solutions Trust: 4.25 Fetched: April 2, 2024, 9:49 a.m., Published: -	Vulnerabilities: default password

Affected products	External IDs

Beware of These Hardware Security Vulnerabilities \| Digital Solutions, Inc. Trust: 4.25 Fetched: April 2, 2024, 9:48 a.m., Published: -	Vulnerabilities: default password

Affected products	External IDs

Beware of These Hardware Security Vulnerabilities \| Harbour Technology Consulting, LLC Trust: 4.25 Fetched: April 2, 2024, 9:48 a.m., Published: -	Vulnerabilities: default password

Affected products	External IDs

Beware of These Hardware Security Vulnerabilities \| Kinetix Trust: 4.25 Fetched: April 2, 2024, 9:47 a.m., Published: March 15, 2024, 3 p.m.	Vulnerabilities: default password

Affected products	External IDs

Beware of These Hardware Security Vulnerabilities \| Roberts Technology Solutions, Inc. Trust: 4.25 Fetched: April 2, 2024, 9:47 a.m., Published: -	Vulnerabilities: default password

Affected products	External IDs

Beware of These Hardware Security Vulnerabilities \| Future Subnets Trust: 4.25 Fetched: April 2, 2024, 9:47 a.m., Published: -	Vulnerabilities: default password

Affected products	External IDs

Beware of These Hardware Security Vulnerabilities \| eCLIPSE Network Solutions Trust: 4.0 Fetched: April 2, 2024, 9:46 a.m., Published: -	Vulnerabilities: default password

Affected products	External IDs

Beware of These Hardware Security Vulnerabilities \| Owia Technology Trust: 4.25 Fetched: April 2, 2024, 9:46 a.m., Published: -	Vulnerabilities: default password

Affected products	External IDs

Beware of These Hardware Security Vulnerabilities \| Real IT Solutions Trust: 4.25 Fetched: April 2, 2024, 9:45 a.m., Published: -	Vulnerabilities: default password

Affected products	External IDs

Beware of These Hardware Security Vulnerabilities \| Mid-Atlantic Computer Solutions Trust: 4.25 Fetched: April 2, 2024, 9:44 a.m., Published: -	Vulnerabilities: default password

Affected products	External IDs

Beware of These Hardware Security Vulnerabilities \| ArcSource Trust: 4.25 Fetched: April 2, 2024, 9:44 a.m., Published: -	Vulnerabilities: default password

Affected products	External IDs

Beware of These Hardware Security Vulnerabilities \| Computer Experts Group, Ltd. Trust: 4.25 Fetched: April 2, 2024, 9:43 a.m., Published: -	Vulnerabilities: default password

Affected products	External IDs

VARIoT news about IoT security