Sign-up

VARIoT news about IoT security

Android and Google Devices Security Reward Program Rules - Rules - About - Google Bug Hunters

Trust: 4.5

Fetched: Oct. 10, 2023, 9:35 a.m., Published: -
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: google model: pixel
vendor: google model: wifi
vendor: google model: google wifi
vendor: google model: chromecast
vendor: google model: android
vendor: nest model: nest cam
vendor: nest model: learning thermostat

Vulnerabilities in billions of Wi-Fi devices let hackers bypass firewalls | Ars Technica

Related entries in the VARIoT vulnerabilities database: VAR-202105-1430, VAR-202105-1475, VAR-202105-1428, VAR-202105-0257, VAR-202105-1477, VAR-202105-1432, VAR-202105-1429, VAR-202105-1431, VAR-202105-1493, VAR-202105-1476

Trust: 3.75

Fetched: Oct. 10, 2023, 9:34 a.m., Published: May 21, 2021, 12:39 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2020-26139, CVE-2020-26147, CVE-2020-26141, CVE-2020-26145, CVE-2020-26146, CVE-2020-26142, CVE-2020-24587, CVE-2020-26140, CVE-2021-26139, CVE-2020-24588, CVE-2020-26143, CVE-2020-26144, CVE-2020-24586

CVE-2021-21551- Hundreds Of Millions Of Dell Computers At Risk Due to Multiple BIOS Driver Privilege Escalation Flaws - SentinelLabs

Related entries in the VARIoT vulnerabilities database: VAR-202105-0569

Trust: 5.5

Fetched: Oct. 10, 2023, 9:34 a.m., Published: Sept. 2, 2021, 6:12 p.m.
 Vulnerabilities: privilege escalation, denial of service, memory corruption
Affected productsExternal IDs
vendor: dell model: bios
db: NVD ids: CVE-2021-21551

Nearly All Wi-Fi Devices Are Vulnerable to New FragAttacks

Related entries in the VARIoT vulnerabilities database: VAR-202105-1430, VAR-202105-1475, VAR-202105-1428, VAR-202105-0257, VAR-202105-1432, VAR-202105-1429, VAR-202105-1431, VAR-202105-1493, VAR-202105-1477, VAR-202105-1476

Trust: 4.0

Fetched: Oct. 10, 2023, 9:33 a.m., Published: May 12, 2021, 1:07 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: router
db: NVD ids: CVE-2020-26139, CVE-2020-26147, CVE-2020-26141, CVE-2020-26145, CVE-2020-26142, CVE-2020-24587, CVE-2020-26140, CVE-2020-24588, CVE-2020-26143, CVE-2020-26146, CVE-2020-24586, CVE-2020-26144

What is a CVE? Common Vulnerabilities and Exposures Explained | UpGuard

Related entries in the VARIoT vulnerabilities database: VAR-199603-0003

Trust: 3.5

Fetched: Oct. 10, 2023, 9:32 a.m., Published: Oct. 10, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: meeting
vendor: huawei model: huawei
db: NVD ids: CVE-1999-0067, CVE-2014-12345, CVE-2016-7654321

Medical device vulnerability could let hackers steal Wi-Fi credentials | CSO Online

Trust: 3.0

Fetched: Oct. 10, 2023, 9:32 a.m., Published: Sept. 9, 2022, midnight
 Vulnerabilities: format string vulnerability
Affected productsExternal IDs

Google Online Security Blog: Data Driven Security Hardening in Android

Trust: 4.25

Fetched: Oct. 10, 2023, 9:26 a.m., Published: Jan. 29, 2021, midnight
 Vulnerabilities: integer overflow, privilege escalation, code execution...
Affected productsExternal IDs
vendor: google model: wifi
vendor: google model: android

Your Device is Vulnerable ... Now What? - NowSecure

Trust: 4.5

Fetched: Oct. 10, 2023, 9:24 a.m., Published: -
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: motorola model: motorola
vendor: motorola model: android
vendor: samsung model: galaxy
vendor: samsung model: galaxy s5
vendor: google model: android
vendor: google model: nexus
db: NVD ids: CVE-2015-3825

Security Issues in IoT: Challenges and Countermeasures

Trust: 3.75

Fetched: Oct. 10, 2023, 9:23 a.m., Published: -
 Vulnerabilities: default credentials
Affected productsExternal IDs

Security Advisory | Rockwell Automation

Related entries in the VARIoT vulnerabilities database: VAR-201810-0569

Trust: 5.75

Fetched: Oct. 10, 2023, 9:23 a.m., Published: April 1, 2004, 8:19 p.m.
 Vulnerabilities: memory leak
Affected productsExternal IDs
vendor: cisco model: ios xe
vendor: cisco model: cisco ios
vendor: cisco model: cisco ios xe
vendor: cisco model: ios xe software
vendor: cisco model: ios software
vendor: cisco model: industrial ethernet
db: NVD ids: CVE-2018-15377
db: CISCO ids: CISCO-SA-20180926-PNP

A Review of Attacks, Vulnerabilities, and Defenses in Industry 4.0 with New Challenges on Data Sovereignty Ahead - PMC

Trust: 4.25

Fetched: Oct. 10, 2023, 9:20 a.m., Published: Aug. 10, 2021, midnight
 Vulnerabilities: information leakage, replay attack, buffer overflow...
Affected productsExternal IDs
vendor: trend model: security
vendor: axis model: communications
vendor: schneider model: monitor
vendor: schneider model: concept

Zyxel security advisory for multiple vulnerabilities in firewalls and WLAN controllers | Zyxel Networks

Trust: 4.5

Fetched: Oct. 10, 2023, 9:19 a.m., Published: Oct. 7, 2023, midnight
 Vulnerabilities: buffer overflow, denial of service, command injection...
Affected productsExternal IDs
db: NVD ids: CVE-2023-34139, CVE-2023-28767, CVE-2023-34141, CVE-2023-34138, CVE-2023-33011, CVE-2023-34140, CVE-2023-33012

The Top 10 Vulnerabilities of 2022: Mastering Vulnerability Management - Strobes

Related entries in the VARIoT vulnerabilities database: VAR-202205-1958, VAR-202205-0394

Trust: 5.25

Fetched: Oct. 10, 2023, 9:18 a.m., Published: Aug. 21, 2023, 9:48 a.m.
 Vulnerabilities: privilege escalation, directory traversal, code execution
Affected productsExternal IDs
vendor: google model: google chrome
vendor: google model: chrome
db: NVD ids: CVE-2022-30190, CVE-2022-1388, CVE-2022-27925, CVE-2022-0609

How To Use Nmap for Vulnerability Scanning: Complete Tutorial

Trust: 3.5

Fetched: Oct. 10, 2023, 9:12 a.m., Published: July 14, 2023, 9:20 a.m.
 Vulnerabilities: request forgery, cross-site request forgery, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2020-28017, CVE-2020-28026, CVE-2017-7494

NPort 5110 Series Vulnerabilities

Related entries in the VARIoT vulnerabilities database: VAR-202207-1770

Trust: 4.0

Fetched: Oct. 10, 2023, 9:11 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: moxa model: nport 5200a
vendor: moxa model: nport 5110
vendor: moxa model: nport 5200a series
vendor: moxa model: nport
vendor: moxa model: nport 5200a series firmware
db: NVD ids: CVE-2022-2043, CVE-2022-2044

CVE-2023-33106, CVE-2023-33107, CVE-2022-22071 and CVE-2023-33063: Where do your weaknesses belong? (5th Oct 2023) | Cyber security technical information

Related entries in the VARIoT vulnerabilities database: VAR-202312-0888

Trust: 4.25

Fetched: Oct. 8, 2023, 10:18 a.m., Published: Oct. 5, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2023-33107, CVE-2022-22071, CVE-2023-33063, CVE-2023-33106

Vulnerability Management là gì? Vai trò của Quản lý lỗ hổng trong An ninh mạng

Trust: 3.0

Fetched: Oct. 8, 2023, 10:16 a.m., Published: Sept. 27, 2023, midnight
 Vulnerabilities: buffer overflow
Affected productsExternal IDs

Update your Android devices now! Google patches two actively exploited vulnerabilities

Related entries in the VARIoT vulnerabilities database: VAR-202312-0888

Trust: 4.75

Fetched: Oct. 8, 2023, 10:10 a.m., Published: Oct. 4, 2023, 8 p.m.
 Vulnerabilities: buffer overflow
Affected productsExternal IDs
vendor: samsung model: android phone
vendor: samsung model: notes
vendor: google model: android
vendor: huawei model: huawei
db: NVD ids: CVE-2023-33106, CVE-2023-33107, CVE-2022-22071, CVE-2023-4863, CVE-2023-33063, CVE-2023-4211

Mozilla Zero-Day Vulnerability Exploited in the Wild - Patch Now!

Trust: 4.5

Fetched: Oct. 8, 2023, 9:59 a.m., Published: Sept. 14, 2023, 9:32 a.m.
 Vulnerabilities: buffer overflow
Affected productsExternal IDs
vendor: google model: google chrome
vendor: google model: chrome
db: NVD ids: CVE-2023-4863

Qualcomm Reports Active Exploitation of Zero-Day Vulnerabilities in GPU, DSP Drivers - VULNERA

Related entries in the VARIoT vulnerabilities database: VAR-202312-0888

Trust: 4.75

Fetched: Oct. 8, 2023, 9:59 a.m., Published: Oct. 3, 2023, 3:29 p.m.
 Vulnerabilities: use after free
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2023-33106, CVE-2023-33107, CVE-2023-24855, CVE-2022-22071, CVE-2023-33028, CVE-2023-33063, CVE-2023-4211, CVE-2023-2854