VARIoT news about IoT security

Trust: 3.5

Fetched: Dec. 15, 2023, 9:33 a.m., Published: Dec. 14, 2023, 8:13 p.m.
Vulnerabilities: buffer overflow, improper access control, integer overflow
Affected productsExternal IDs
vendor: samsung model: mobile
vendor: samsung model: galaxy
vendor: samsung model: note
vendor: samsung model: samsung mobile
vendor: samsung model: knox
Related entries in the VARIoT vulnerabilities database: VAR-202306-0890, VAR-202306-0889

Trust: 4.5

Fetched: Dec. 15, 2023, 9:33 a.m., Published: Jan. 10, 2023, midnight
Vulnerabilities: cross-site request forgery, request forgery
Affected productsExternal IDs
vendor: siemens model: sicam
db: NVD ids: CVE-2023-30901, CVE-2023-31238

Trust: 3.0

Fetched: Dec. 15, 2023, 9:32 a.m., Published: Dec. 11, 2023, 9:53 p.m.
Vulnerabilities: -
Affected productsExternal IDs

Trust: 4.5

Fetched: Dec. 15, 2023, 9:31 a.m., Published: Dec. 3, 2023, midnight
Vulnerabilities: path traversal, improper access control, command injection...
Affected productsExternal IDs
db: NVD ids: CVE-2023-1143, CVE-2023-1134, CVE-2023-1141, CVE-2023-47279, CVE-2023-1137, CVE-2023-47207, CVE-2023-39226

Trust: 3.5

Fetched: Dec. 15, 2023, 9:26 a.m., Published: Dec. 15, 2023, midnight
Vulnerabilities: memory corruption, buffer overflow, integer overflow
Affected productsExternal IDs
vendor: samsung model: knox
vendor: samsung model: mobile
vendor: samsung model: galaxy
vendor: samsung model: samsung mobile
vendor: samsung model: samsung galaxy

Trust: 3.5

Fetched: Dec. 15, 2023, 9:25 a.m., Published: March 16, 2023, 11:21 p.m.
Vulnerabilities: brute force attack, denial of service, cross-site scripting
Affected productsExternal IDs
Related entries in the VARIoT vulnerabilities database: VAR-202007-1393

Trust: 4.25

Fetched: Dec. 15, 2023, 9:22 a.m., Published: May 1, 2023, midnight
Vulnerabilities: default password, command injection, denial of service...

Trust: 3.75

Fetched: Dec. 15, 2023, 9:11 a.m., Published: Dec. 15, 2023, midnight
Vulnerabilities: session hijacking
Affected productsExternal IDs

Trust: 6.0

Fetched: Dec. 15, 2023, 9:10 a.m., Published: Dec. 13, 2023, 4:39 p.m.
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2023-50164, CVE-2023-35628

Trust: 4.5

Fetched: Dec. 15, 2023, 9:09 a.m., Published: Dec. 7, 2023, midnight
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: dell model: bios
vendor: lenovo model: updates
vendor: lenovo model: system
vendor: lenovo model: bios
vendor: apple model: iphone
vendor: apple model: ipad

Trust: 3.75

Fetched: Dec. 13, 2023, 9:45 a.m., Published: Dec. 1, 2023, midnight
Vulnerabilities: denial of service
Affected productsExternal IDs

Trust: 3.5

Fetched: Dec. 13, 2023, 9:43 a.m., Published: Dec. 4, 2023, 11:38 a.m.
Vulnerabilities: denial of service, brute force attack, cross-site scripting...
Affected productsExternal IDs
vendor: wireshark model: wireshark

Trust: 3.25

Fetched: Dec. 13, 2023, 9:43 a.m., Published: Nov. 15, 2023, midnight
Vulnerabilities: buffer overflow
Affected productsExternal IDs

Trust: 4.0

Fetched: Dec. 13, 2023, 9:41 a.m., Published: Dec. 9, 2023, 6:38 a.m.
Vulnerabilities: privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2023-40713

Trust: 3.75

Fetched: Dec. 13, 2023, 9:40 a.m., Published: Dec. 12, 2023, midnight
Vulnerabilities: denial of service, sql injection, path traversal...
Affected productsExternal IDs
db: NVD ids: CVE-2023-22273, CVE-2023-22275, CVE-2023-35187, CVE-2023-44371, CVE-2023-22272, CVE-2023-48646, CVE-2019-6445, CVE-2023-35185, CVE-2019-6443, CVE-2023-42123

Trust: 3.0

Fetched: Dec. 13, 2023, 9:39 a.m., Published: Feb. 13, 7210, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: latitude
vendor: dell model: bios
Related entries in the VARIoT vulnerabilities database: VAR-202205-1480, VAR-202205-1549, VAR-202205-1571

Trust: 4.75

Fetched: Dec. 13, 2023, 9:38 a.m., Published: -
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: d-link model: router
vendor: d-link model: dir-816l
db: NVD ids: CVE-2022-28956, CVE-2022-28955, CVE-2022-28958

Trust: 5.25

Fetched: Dec. 13, 2023, 9:36 a.m., Published: Nov. 22, 2023, 10:24 a.m.
Vulnerabilities: authentication bypass, privilege escalation, sql injection...
Affected productsExternal IDs
vendor: palo alto networks model: firewall
vendor: palo alto networks model: networks
vendor: palo model: firewall
vendor: palo model: networks
vendor: cisco model: ios xe
vendor: cisco model: security manager
vendor: cisco model: ios xe software
vendor: cisco model: cisco ios
vendor: cisco model: routers
vendor: cisco model: cisco ios xe
vendor: snort model: snort
db: NVD ids: CVE-2023-20198, CVE-2023-38545, CVE-2023-35187, CVE-2023-20273, CVE-2023-46748, CVE-2023-46747, CVE-2023-34048, CVE-2023-35182, CVE-2023-0568, CVE-2023-34056, CVE-2023-0567, CVE-2023-35185, CVE-2023-3824

Trust: 3.0

Fetched: Dec. 13, 2023, 9:36 a.m., Published: Dec. 11, 2023, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios
vendor: dell model: latitude
vendor: dell model: latitude 7290

Trust: 3.25

Fetched: Dec. 13, 2023, 9:35 a.m., Published: Dec. 8, 2023, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios