Sign-up

VARIoT news about IoT security

CVE - CVE-2017-5638

Related entries in the VARIoT vulnerabilities database: VAR-201703-0755

Trust: 3.25

Fetched: Jan. 28, 2024, 10:13 a.m., Published: Jan. 3, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2017-5638

WARNING: NEW REMOTE CODE EXECUTION VULNERABILITY IN MULTIPLE CISCO PRODUCTS, PATCH IMMEDIATELY! | Cert

Trust: 5.25

Fetched: Jan. 28, 2024, 10:13 a.m., Published: Jan. 25, 2024, 7:24 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2024-20253

System BIOS komputerów Alienware x15/x17 R2 | Szczegóły sterownika | Dell Polska

Trust: 3.25

Fetched: Jan. 28, 2024, 10:12 a.m., Published: Jan. 16, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios

Two Zero-Day Vulnerabilities Impacting Ivanti Connect Secure and Policy Secure Gateways

Trust: 4.75

Fetched: Jan. 28, 2024, 10:12 a.m., Published: Jan. 15, 2024, midnight
 Vulnerabilities: code execution, authentication bypass, command injection
Affected productsExternal IDs
db: NVD ids: CVE-2023-46805, CVE-2024-21887

WARNING: NEW REMOTE CODE EXECUTION VULNERABILITY IN MULTIPLE CISCO PRODUCTS, PATCH IMMEDIATELY! | Cert

Trust: 5.25

Fetched: Jan. 28, 2024, 10:11 a.m., Published: Jan. 25, 2024, 7:24 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2024-20253

CVE-2024-23624 - vulnerability database | Vulners.com

Trust: 5.0

Fetched: Jan. 28, 2024, 10:05 a.m., Published: Jan. 26, 2024, 12:15 a.m.
 Vulnerabilities: command execution, command injection
Affected productsExternal IDs
vendor: d-link model: dap-1650
db: NVD ids: CVE-2024-23624

About the security content of iOS 15.7.3 and iPadOS 15.7.3 - Apple Support

Related entries in the VARIoT vulnerabilities database: VAR-202301-1707, VAR-202301-1717, VAR-202301-1713, VAR-202301-1710, VAR-202301-1706

Trust: 3.75

Fetched: Jan. 28, 2024, 10:05 a.m., Published: July 15, 2003, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: ipad air
vendor: apple model: ipod touch
vendor: apple model: ipad
db: NVD ids: CVE-2023-23498, CVE-2023-23503, CVE-2023-23505, CVE-2023-23504, CVE-2023-23500

CVE-2024-23630 - vulnerability database | Vulners.com

Trust: 6.25

Fetched: Jan. 28, 2024, 9:58 a.m., Published: Jan. 26, 2024, 12:15 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: motorola model: motorola
db: NVD ids: CVE-2024-23630

Zero-click attacks: everything you need to know | TSC

Trust: 3.25

Fetched: Jan. 28, 2024, 9:56 a.m., Published: Jan. 18, 2024, noon
 Vulnerabilities: memory corruption, cross-site request forgery, request forgery...
Affected productsExternal IDs
vendor: rapid model: scada
vendor: apple model: iphone
vendor: essential model: phone

CVE-2024-23625 - vulnerability database | Vulners.com

Trust: 5.0

Fetched: Jan. 28, 2024, 9:54 a.m., Published: Jan. 26, 2024, 12:15 a.m.
 Vulnerabilities: command execution, command injection
Affected productsExternal IDs
vendor: d-link model: dap-1650
db: NVD ids: CVE-2024-23625

Vulnerability • InfoTech & InfoSec News

Trust: 4.0

Fetched: Jan. 28, 2024, 9:53 a.m., Published: Jan. 26, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: webkit
vendor: apple model: tvos
vendor: apple model: safari
vendor: apple model: macos
db: NVD ids: CVE-2024-23222

SVR hackers breach Microsoft, steal emails from the security team

Trust: 4.5

Fetched: Jan. 28, 2024, 9:53 a.m., Published: Jan. 22, 2024, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: palo model: networks
vendor: trend model: security
vendor: trend model: data loss prevention
vendor: trend micro model: security
vendor: trend micro model: data loss prevention
vendor: google model: chrome
vendor: google model: home
vendor: google model: wifi
vendor: palo alto networks model: networks
vendor: apple model: macos
db: NVD ids: CVE-2023-46805, CVE-2024-21887, CVE-2023-34048, CVE-2024-0517, CVE-2024-22195

AlmaLinux 9 : grub2 (ALSA-2024:0468) - vulnerability database | Vulners.com

Trust: 4.75

Fetched: Jan. 28, 2024, 9:42 a.m., Published: Jan. 26, 2024, midnight
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
vendor: alsa model: alsa
db: NVD ids: CVE-2023-4001

Cisco Unified Communications Products Remote Code Execution ... - vulnerability database | Vulners.com

Trust: 5.25

Fetched: Jan. 28, 2024, 9:42 a.m., Published: Jan. 24, 2024, 4 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: cisco model: unified communications

8 BEST Web Vulnerability Scanning Tools

Trust: 3.25

Fetched: Jan. 28, 2024, 9:34 a.m., Published: Jan. 8, 2024, midnight
 Vulnerabilities: cross-site scripting, sql injection
Affected productsExternal IDs
vendor: snort model: snort
vendor: essential model: phone

Cisco Unified Communications Products Remote Code Execution Vulnerability

Trust: 3.75

Fetched: Jan. 28, 2024, 9:34 a.m., Published: Jan. 26, 2024, 9:01 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: cisco model: unity
vendor: cisco model: unified communications
vendor: cisco model: unity connection

China-linked APT UNC3886 exploits VMware zero-day since 2021

Trust: 4.0

Fetched: Jan. 28, 2024, 9:33 a.m., Published: Jan. 19, 2024, 7:32 p.m.
 Vulnerabilities: command execution
Affected productsExternal IDs
db: NVD ids: CVE-2023-20867, CVE-2023-34048

Apple TV < 17.3 Multiple Vulnerabilities (HT214055) - vulnerability database | Vulners.com

Trust: 3.5

Fetched: Jan. 28, 2024, 9:31 a.m., Published: Jan. 25, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: apple tv
vendor: apple model: apple_tv
db: NVD ids: CVE-2024-23213, CVE-2024-23210, CVE-2024-23223, CVE-2024-23215, CVE-2024-23218, CVE-2024-23206, CVE-2024-23212, CVE-2024-23222, CVE-2024-23208

Top CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors | CISA

Related entries in the VARIoT vulnerabilities database: VAR-202110-1691, VAR-202206-0004, VAR-202104-0768, VAR-202007-1393, VAR-202205-0394, VAR-202112-0566, VAR-202110-1690, VAR-202202-0171

Trust: 5.25

Fetched: Jan. 28, 2024, 9:29 a.m., Published: Jan. 28, 2023, midnight
 Vulnerabilities: directory traversal, command execution, path traversal...
Affected productsExternal IDs
vendor: buffalo model: buffalo wsr-2533dhp3
vendor: buffalo model: wsr-2533dhp3
vendor: buffalo model: wsr-2533dhpl2-bk
vendor: buffalo model: buffalo wsr-2533dhpl2
vendor: buffalo model: wsr-2533dhp3-bk
vendor: buffalo model: wsr-2533dhpl2
vendor: pulse model: secure pulse connect secure
vendor: pulse secure model: pulse connect secure
vendor: pulse secure model: connect secure
vendor: citrix model: sd-wan
vendor: citrix model: gateway
vendor: citrix model: sd-wan wanop
vendor: citrix model: application delivery controller
vendor: netapp model: cloud backup
vendor: netapp model: netapp cloud backup
vendor: zoho model: manageengine adselfservice plus
vendor: cisco model: sd-wan
vendor: cisco model: hyperflex hx data platform
vendor: cisco model: hyperflex
vendor: cisco model: technical support
vendor: cisco model: cisco hyperflex
db: NVD ids: CVE-2021-42237, CVE-2021-26084, CVE-2021-26854, CVE-2019-19781, CVE-2021-41773, CVE-2019-11510, CVE-2021-27078, CVE-2021-27065, CVE-2021-22205, CVE-2021-1497, CVE-2021-26412, CVE-2021-26857, CVE-2022-26134, CVE-2021-40539, CVE-2021-26858, CVE-2021-20090, CVE-2021-26855, CVE-2021-36260, CVE-2020-5902, CVE-2022-1388, CVE-2021-22005, CVE-2021-44228, CVE-2021-42013, CVE-2022-24112

Mirai Botnet Attack IoT Devices via CVE-2020-5902

Related entries in the VARIoT vulnerabilities database: VAR-202007-1393

Trust: 3.5

Fetched: Jan. 28, 2024, 9:29 a.m., Published: July 28, 2020, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: trend model: security
vendor: trend model: home network security
vendor: trend micro model: security
vendor: trend micro model: home network security
db: NVD ids: CVE-2020-5902