VARIoT latest news about IoT security

Critical Atlassian Confluence flaw with vulnerability score of 10 draws federal warning - SiliconANGLE Trust: 4.75 Fetched: Oct. 20, 2023, 9:21 a.m., Published: Oct. 16, 2023, 11:06 p.m.	Vulnerabilities: access control vulnerability

Affected products

External IDs

db:

NVD

ids:

CVE-2023-22515

Attacks on 5G Infrastructure From User Devices: ASN.1 Vulnerabilities in 5G Cores Trust: 3.5 Fetched: Oct. 20, 2023, 9:20 a.m., Published: Oct. 20, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	trend micro	model:	security
vendor:	trend	model:	security

db:

NVD

ids:

CVE-2022-43677

Unidentified attackers breach tens of thousands of Cisco devices \| CyberScoop Related entries in the VARIoT vulnerabilities database: VAR-202103-0773 Trust: 3.75 Fetched: Oct. 20, 2023, 9:20 a.m., Published: Oct. 18, 2023, 3:34 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	ios xe
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	routers
vendor:	cisco	model:	access points

db:

NVD

ids:

CVE-2023-20198, CVE-2021-1435

Cisco Warns of Exploitation of a Maximum Severity Zero-Day Vulnerability in IOS XE: CVE-2023-20198 Related entries in the VARIoT vulnerabilities database: VAR-202103-0773 Trust: 5.25 Fetched: Oct. 20, 2023, 9:20 a.m., Published: Oct. 17, 2023, 11:22 a.m.	Vulnerabilities: privilege escalation, command injection

Affected products

External IDs

vendor:	snort	model:	snort
vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	routers
vendor:	cisco	model:	cisco ios

db:

NVD

ids:

CVE-2023-20198, CVE-2021-1435

Cisco IOS XE Zero-Day: Network Supply Chain Vulnerabilities Underscore Lack of Threat Detection - Security Boulevard Trust: 3.5 Fetched: Oct. 20, 2023, 9:19 a.m., Published: Oct. 19, 2023, 4:55 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	routers
vendor:	cisco	model:	access points
vendor:	cisco	model:	cisco ios

db:

NVD

ids:

CVE-2023-20198

Tens of Thousands of Cisco Devices Hacked via Zero-Day Vulnerability - SecurityWeek Related entries in the VARIoT vulnerabilities database: VAR-202103-0773 Trust: 4.0 Fetched: Oct. 20, 2023, 9:19 a.m., Published: Oct. 18, 2023, 10 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	cisco ios
vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	ios software
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	routers

db:

NVD

ids:

CVE-2023-20198, CVE-2021-1435

9 top mobile security threats and how you can avoid them \| ZDNET Trust: 4.5 Fetched: Oct. 20, 2023, 9:18 a.m., Published: Oct. 20, 2023, midnight	Vulnerabilities: service disruption

Affected products

External IDs

vendor:	samsung	model:	mobile
vendor:	samsung	model:	note
vendor:	samsung	model:	mobile devices
vendor:	avast	model:	antivirus
vendor:	apple	model:	iphone
vendor:	apple	model:	watch
vendor:	essential	model:	phone
vendor:	motorola	model:	android
vendor:	motorola	model:	motorola
vendor:	google	model:	android

Cisco IOS XE vulnerability widely exploited in the wild Trust: 4.75 Fetched: Oct. 20, 2023, 9:18 a.m., Published: Oct. 18, 2023, 1:51 p.m.	Vulnerabilities: authentication bypass

Affected products

External IDs

vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	routers
vendor:	cisco	model:	cisco ios
vendor:	cisco	model:	wireless lan controllers

db:

NVD

ids:

CVE-2023-20198

CVE-2023-4966: Citrix NetScaler ADC and NetScaler Gateway Information Disclosure Exploited in the Wild - Blog \| Tenable® Trust: 5.25 Fetched: Oct. 20, 2023, 9:16 a.m., Published: Oct. 18, 2023, 4:39 p.m.	Vulnerabilities: code execution, information disclosure, denial of service

Affected products

External IDs

vendor:	citrix	model:	gateway
vendor:	citrix	model:	netscaler gateway
vendor:	citrix	model:	netscaler
vendor:	citrix	model:	netscaler adc

db:

NVD

ids:

CVE-2023-4966, CVE-2019-19781, CVE-2023-4967, CVE-2022-27518

Threat Brief: Cisco IOS XE Web UI Privilege Escalation Vulnerability (Updated) Trust: 5.75 Fetched: Oct. 20, 2023, 9:15 a.m., Published: Oct. 19, 2023, 12:30 a.m.	Vulnerabilities: privilege escalation

Affected products

External IDs

vendor:	palo	model:	networks
vendor:	palo	model:	firewall
vendor:	palo alto networks	model:	networks
vendor:	palo alto networks	model:	firewall
vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	cisco ios

db:

NVD

ids:

CVE-2023-20198

Zero-Day Alert: Thousands of Cisco IOS XE Systems Now Compromised Related entries in the VARIoT vulnerabilities database: VAR-202103-0773 Trust: 5.5 Fetched: Oct. 20, 2023, 9:15 a.m., Published: Oct. 17, 2023, 7:16 p.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:	cisco systems	model:	cisco ios xe
vendor:	cisco systems	model:	ios xe
vendor:	cisco systems	model:	cisco ios
vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	cisco ios

db:

NVD

ids:

CVE-2023-20198, CVE-2021-1435

Critical Flaw Leads Hackers to Hijack Thousands of Cisco Devices \| PCMag Trust: 3.75 Fetched: Oct. 20, 2023, 9:14 a.m., Published: Oct. 20, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	router
vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	wireless controller
vendor:	cisco	model:	cisco ios

db:

NVD

ids:

CVE-2023-20198

Thousands of devices exposed to critical Cisco IOS XE software bug \| SC Media Trust: 3.75 Fetched: Oct. 20, 2023, 9:14 a.m., Published: Oct. 18, 2023, 6:51 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	routers
vendor:	cisco	model:	access points
vendor:	cisco	model:	cisco ios

db:

NVD

ids:

CVE-2023-20198

More Than 34,000 Cisco Devices Compromised Via IOS XE Vulnerability: Researchers \| CRN Trust: 4.5 Fetched: Oct. 20, 2023, 9:14 a.m., Published: Oct. 18, 2023, 1:44 p.m.	Vulnerabilities: privilege escalation

Affected products

External IDs

vendor:	cisco	model:	router
vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	wireless lan controller
vendor:	cisco	model:	cisco ios

db:

NVD

ids:

CVE-2023-20198

How to keep your IoT devices secure \| TechRadar Trust: 3.5 Fetched: Oct. 20, 2023, 9:12 a.m., Published: Oct. 16, 2023, 2:14 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	network access control
vendor:	google	model:	home
vendor:	aruba	model:	clearpass

Philippines ranks second in global list of compromised Cisco devices Related entries in the VARIoT vulnerabilities database: VAR-202103-0773 Trust: 3.75 Fetched: Oct. 20, 2023, 9:12 a.m., Published: -	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	router
vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	wireless lan controller
vendor:	cisco	model:	cisco ios

db:

NVD

ids:

CVE-2023-20198, CVE-2021-1435

Cisco Warns of Critical Vulnerability in IOS XE Software - Infosecurity Magazine Trust: 3.75 Fetched: Oct. 20, 2023, 9:11 a.m., Published: Oct. 17, 2023, noon	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	cisco ios

db:

NVD

ids:

CVE-2023-20198

Cisco IOS XE Hack: Researchers Find Another ‘Sharp Increase’ In Affected Devices \| CRN Trust: 4.5 Fetched: Oct. 20, 2023, 9:11 a.m., Published: Oct. 19, 2023, 9:44 a.m.	Vulnerabilities: privilege escalation

Affected products

External IDs

vendor:	cisco	model:	router
vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	wireless lan controller
vendor:	cisco	model:	cisco ios

db:

NVD

ids:

CVE-2023-20198

Active Exploitation of Cisco IOS XE Zero-Day Vulnerability \| Rapid7 Blog Related entries in the VARIoT vulnerabilities database: VAR-202103-0773 Trust: 3.5 Fetched: Oct. 20, 2023, 9:10 a.m., Published: Oct. 17, 2023, 7:50 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	routers
vendor:	cisco	model:	catalyst
vendor:	cisco	model:	access points
vendor:	cisco	model:	cisco ios

db:

NVD

ids:

CVE-2023-20198, CVE-2021-1435, CVE-2023-21098

Cisco Releases Security Advisory for Actively Exploited Vulnerability CVE-2023-20198 - NHS Digital Trust: 3.75 Fetched: Oct. 20, 2023, 9:10 a.m., Published: Oct. 20, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

cisco

model:

series

db:

NVD

ids:

CVE-2023-20198

VARIoT news about IoT security