Sign-up

VARIoT news about IoT security

2021-22 ICS Advisory Report - Verve Industrial

Trust: 3.0

Fetched: Oct. 4, 2023, 10:18 a.m., Published: July 1, 2022, 4:31 p.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs

CVE - Search Results

Related entries in the VARIoT vulnerabilities database: VAR-202006-0325, VAR-201802-1046, VAR-201809-1090, VAR-201802-0482, VAR-201906-0706, VAR-201802-0483, VAR-201109-0127, VAR-201906-0709, VAR-201809-1094, VAR-201805-1149, VAR-201809-1166, VAR-201906-0712, VAR-201706-0454, VAR-201802-0478, VAR-202108-1362, VAR-201806-1790, VAR-201802-0484, VAR-201804-0518, VAR-201802-0480, VAR-201805-1151, VAR-201809-1165, VAR-201809-0149, VAR-201802-0479, VAR-201702-0699, VAR-202006-1820, VAR-201803-0185, VAR-201809-1093, VAR-201906-0711, VAR-201809-1167, VAR-201904-0142, VAR-201808-0375, VAR-201809-1092, VAR-201803-2077, VAR-201802-0485, VAR-201906-0707, VAR-201809-1091, VAR-201802-0481, VAR-202006-0324, VAR-202108-1361, VAR-201803-0183

Trust: 5.25

Fetched: Oct. 4, 2023, 10:16 a.m., Published: Oct. 3, 2023, midnight
 Vulnerabilities: buffer overflow, information disclosure, authentication bypass...
Affected productsExternal IDs
vendor: smiths model: medfusion 4000 wireless syringe infusion pump
vendor: philips model: e-alert
vendor: medhost model: connex
vendor: beaconmedaes model: totalalert scroll medical air systems
vendor: beaconmedaes model: scroll medical air systems
vendor: blackberry model: link
vendor: blackberry model: blackberry
vendor: smiths-medical model: medfusion 4000 wireless syringe infusion pump
vendor: capsule model: smartlinx neuron 2
vendor: vyaire model: medical carefusion upgrade utility
vendor: vyaire model: carefusion upgrade utility
vendor: smiths medical model: medfusion 4000 wireless syringe infusion pump
vendor: medtronic model: paradigm wireless insulin pump
vendor: medtronic model: paradigm
vendor: baxter model: prismax
vendor: baxter model: prismaflex
vendor: shekar model: endoscope
db: NVD ids: CVE-2014-6713, CVE-2020-12037, CVE-2018-5457, CVE-2018-8848, CVE-2018-18979, CVE-2017-12723, CVE-2017-10718, CVE-2017-12724, CVE-2011-3386, CVE-2013-4425, CVE-2017-10721, CVE-2021-22156, CVE-2018-8856, CVE-2020-27282, CVE-2023-0774, CVE-2018-7518, CVE-2017-14101, CVE-2017-16776, CVE-2021-32025, CVE-2023-0888, CVE-2022-38765, CVE-2023-0706, CVE-2023-1006, CVE-2005-2285, CVE-2023-29863, CVE-2018-8844, CVE-2017-10724, CVE-2017-6018, CVE-2023-1151, CVE-2017-12718, CVE-2022-23612, CVE-2020-28937, CVE-2018-18978, CVE-2021-39376, CVE-2019-11687, CVE-2018-7510, CVE-2017-12725, CVE-2022-25394, CVE-2017-12701, CVE-2017-12721, CVE-2023-2628, CVE-2022-35117, CVE-2018-7526, CVE-2018-8842, CVE-2020-24862, CVE-2018-14803, CVE-2023-0707, CVE-2022-2693, CVE-2016-8358, CVE-2017-12720, CVE-2022-2676, CVE-2017-5149, CVE-2020-27290, CVE-2022-28533, CVE-2019-18254, CVE-2017-14006, CVE-2018-8854, CVE-2017-10723, CVE-2022-37461, CVE-2018-18977, CVE-2018-18976, CVE-2018-8846, CVE-2019-5024, CVE-2023-1566, CVE-2021-27410, CVE-2006-2517, CVE-2018-14786, CVE-2020-28939, CVE-2021-27408, CVE-2018-8852, CVE-2018-5438, CVE-2019-9607, CVE-2018-18975, CVE-2017-12726, CVE-2016-8355, CVE-2020-27278, CVE-2022-34770, CVE-2016-4328, CVE-2017-10719, CVE-2018-8850, CVE-2017-12722, CVE-2023-33255, CVE-2020-12036, CVE-2021-39375, CVE-2020-8788, CVE-2017-14002, CVE-2022-0388

Network Vulnerabilities: Types and Common Threats - IT Companies Network

Trust: 4.25

Fetched: Oct. 4, 2023, 10:14 a.m., Published: May 2, 2022, 6:35 a.m.
 Vulnerabilities: buffer overflow, code execution, denial of service...
Affected productsExternal IDs
vendor: google model: home
vendor: trend model: security
vendor: trend model: antivirus
vendor: apple model: watch

How to build a vulnerability scanner with PowerShell | TechTarget

Trust: 3.0

Fetched: Oct. 4, 2023, 10:14 a.m., Published: Oct. 4, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2022-24526

13 Common Security Mistakes That Make Your PC Vulnerable | Tom's Hardware

Trust: 4.25

Fetched: Oct. 4, 2023, 10:13 a.m., Published: Oct. 25, 2020, noon
 Vulnerabilities: brute force attack, default password
Affected productsExternal IDs
vendor: google model: home

Expand Your Vulnerability & Patch Management Program to Mobile Devices with Qualys VMDR | Qualys Security Blog

Related entries in the VARIoT vulnerabilities database: VAR-202006-1614, VAR-201910-0902, VAR-202006-1615

Trust: 3.5

Fetched: Oct. 4, 2023, 10:12 a.m., Published: Feb. 10, 2021, 9:17 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: chrome
vendor: google model: android
vendor: google model: google chrome
vendor: apple model: watch
vendor: trend model: security
db: NVD ids: CVE-2020-9818, CVE-2019-2215, CVE-2020-9819, CVE-2020-6418

What Is the Lifespan of a Vulnerability? - Blog | TenableĀ®

Trust: 3.5

Fetched: Oct. 4, 2023, 10:12 a.m., Published: June 8, 2020, 8:23 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: trend model: security
vendor: trend model: antivirus
db: NVD ids: CVE-2018-0492

Critical flaws in remote management agent impacts thousands of medical devices | CSO Online

Trust: 3.75

Fetched: Oct. 4, 2023, 10:09 a.m., Published: March 8, 2022, midnight
 Vulnerabilities: information leak, service crash, code execution...
Affected productsExternal IDs
db: NVD ids: CVE-2022-25247, CVE-2022-25252, CVE-2022-25246, CVE-2022-25248, CVE-2022-25250, CVE-2022-25249

Android Security Bulletin-June 2022 | Android Open Source Project

Related entries in the VARIoT vulnerabilities database: VAR-202206-0351

Trust: 5.25

Fetched: Oct. 4, 2023, 10:07 a.m., Published: June 4, 2022, midnight
 Vulnerabilities: information disclosure, code execution, denial of service
Affected productsExternal IDs
vendor: google model: pixel
vendor: google model: android
vendor: google model: wifi
vendor: motorola model: android
vendor: motorola model: motorola
vendor: huawei model: huawei
vendor: samsung model: notes
vendor: samsung model: mobile
db: NVD ids: CVE-2022-22090, CVE-2022-20137, CVE-2021-35083, CVE-2022-20143, CVE-2021-35111, CVE-2022-22087, CVE-2022-22085, CVE-2022-22086, CVE-2022-20125, CVE-2022-20130, CVE-2022-21745, CVE-2021-39691, CVE-2022-20140, CVE-2022-20131, CVE-2022-20145, CVE-2021-35102, CVE-2022-22084, CVE-2022-20127, CVE-2022-20134, CVE-2022-20135, CVE-2022-20126, CVE-2022-20147, CVE-2022-22083, CVE-2022-20210, CVE-2022-20123, CVE-2022-20133, CVE-2022-20006, CVE-2022-20138, CVE-2022-22082, CVE-2022-20129, CVE-2022-20142

Securing and Managing IoT and IoMT Devices in Healthcare

Trust: 3.5

Fetched: Oct. 4, 2023, 10:05 a.m., Published: March 14, 2022, 10 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: palo model: networks
vendor: palo alto networks model: networks

The Top Ten IoT Vulnerabilities | Infosec

Trust: 3.5

Fetched: Oct. 4, 2023, 10:05 a.m., Published: Feb. 17, 2018, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs

Security risks with modified (rooted) Android versions - Google Account Help

Trust: 3.0

Fetched: Oct. 4, 2023, 10:04 a.m., Published: Jan. 5, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

83 million IoT devices at risk of hacking | ITPro

Trust: 3.0

Fetched: Oct. 4, 2023, 10:03 a.m., Published: Aug. 18, 2021, 10 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-28372

The real dangers of vulnerable IoT devices | Infosec

Trust: 3.0

Fetched: Oct. 4, 2023, 10:02 a.m., Published: Sept. 15, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-31251

Devices Still Vulnerable to DMA Attacks Despite Protections - SecurityWeek

Related entries in the VARIoT vulnerabilities database: VAR-201912-1255

Trust: 4.5

Fetched: Oct. 4, 2023, 10:02 a.m., Published: Jan. 30, 2020, midnight
 Vulnerabilities: code execution, code injection
Affected productsExternal IDs
vendor: dell model: bios
db: NVD ids: CVE-2019-18579

Apache Log4j Vulnerability Guidance | CISA

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 4.0

Fetched: Oct. 4, 2023, 10 a.m., Published: April 8, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228

Outdated IoT healthcare devices pose major security threats | CSO Online

Trust: 3.0

Fetched: Oct. 4, 2023, 9:54 a.m., Published: Jan. 31, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs

37 hardware and firmware vulnerabilities: A guide to the threats | CSO Online

Related entries in the VARIoT vulnerabilities database: VAR-202203-0083, VAR-201611-0121, VAR-201905-0709, VAR-202006-0241, VAR-202203-0045, VAR-201905-0711, VAR-201905-0710, VAR-201905-1248, VAR-202206-1278

Trust: 5.25

Fetched: Oct. 4, 2023, 9:54 a.m., Published: Aug. 11, 2022, midnight
 Vulnerabilities: code execution, privilege escalation
Affected productsExternal IDs
vendor: google model: home
vendor: google model: android
vendor: infineon model: trusted platform
vendor: apple model: macos
vendor: apple model: macbook
db: NVD ids: CVE-2022-0002, CVE-2016-6728, CVE-2020-8694, CVE-2018-12126, CVE-2020-0543, CVE-2022-0001, CVE-2018-12130, CVE-2022-23825, CVE-2020-8695, CVE-2022-29901, CVE-2022-29900, CVE-2022-23823, CVE-2018-12127, CVE-2019-11091, CVE-2022-23960, CVE-2022-24436

Anatomy of an IoT malware attack - IBM Developer

Trust: 5.0

Fetched: Oct. 4, 2023, 9:52 a.m., Published: -
 Vulnerabilities: default credentials, weak password, denial of service...
Affected productsExternal IDs
vendor: apple model: iphone
vendor: google model: android
vendor: google model: home
vendor: google model: wifi
vendor: radware model: gateway

Internet of Things: Security and Solutions Survey - PMC

Trust: 4.0

Fetched: Oct. 4, 2023, 9:48 a.m., Published: Oct. 4, 2022, midnight
 Vulnerabilities: replay attack, information leakage, denial of service...
Affected productsExternal IDs
vendor: rising model: antivirus
vendor: cisco model: leap
vendor: cisco model: umbrella
vendor: cisco model: routers
vendor: cisco model: meeting
vendor: mesh model: mesh
vendor: rapid model: scada
vendor: symantec model: antivirus