VARIoT news about IoT security

Trust: 3.5

Fetched: Sept. 22, 2023, 9:53 a.m., Published: Sept. 20, 2023, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: trend micro model: security
vendor: trend model: security
db: NVD ids: CVE-2021-45462

Trust: 4.5

Fetched: Sept. 22, 2023, 9:51 a.m., Published: Sept. 6, 2023, 5:04 a.m.
Vulnerabilities: cross-site scripting
Affected productsExternal IDs
db: NVD ids: CVE-2023-39513

Trust: 3.5

Fetched: Sept. 22, 2023, 9:49 a.m., Published: Feb. 12, 2017, 11:29 a.m.
Vulnerabilities: cross-site scripting, sql injection
Affected productsExternal IDs
vendor: node.js model: node.js

Trust: 4.25

Fetched: Sept. 22, 2023, 9:43 a.m., Published: Aug. 25, 2023, midnight
Vulnerabilities: code execution, buffer overflow, command execution
Affected productsExternal IDs
vendor: citrix model: gateway
vendor: citrix model: netscaler gateway
vendor: citrix model: netscaler adc
vendor: citrix model: netscaler
db: NVD ids: CVE-2023-3519

Trust: 4.5

Fetched: Sept. 22, 2023, 9:42 a.m., Published: Sept. 7, 2023, 5:04 a.m.
Vulnerabilities: cross-site scripting
Affected productsExternal IDs
db: NVD ids: CVE-2023-39511

Trust: 3.5

Fetched: Sept. 22, 2023, 9:40 a.m., Published: Sept. 21, 2023, midnight
Vulnerabilities: account lockout, default password, session hijacking...
Affected productsExternal IDs
vendor: essential model: phone

Trust: 4.5

Fetched: Sept. 22, 2023, 9:39 a.m., Published: Sept. 6, 2023, 5:20 a.m.
Vulnerabilities: cross-site scripting
Affected productsExternal IDs
db: NVD ids: CVE-2023-39510

Trust: 3.5

Fetched: Sept. 22, 2023, 9:39 a.m., Published: Sept. 20, 2023, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: trend micro model: security
vendor: trend model: security
db: NVD ids: CVE-2021-45462

Trust: 4.75

Fetched: Sept. 22, 2023, 9:38 a.m., Published: Sept. 18, 2023, 8:15 a.m.
Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2023-43115

Trust: 3.0

Fetched: Sept. 22, 2023, 9:37 a.m., Published: Aug. 30, 2023, 4:48 a.m.
Vulnerabilities: denial of service
Affected productsExternal IDs

Trust: 4.5

Fetched: Sept. 22, 2023, 9:36 a.m., Published: Sept. 19, 2023, midnight
Vulnerabilities: code execution, buffer overflow
Affected productsExternal IDs
vendor: google model: android
vendor: google model: chrome
vendor: google model: google chrome
db: NVD ids: CVE-2023-4863, CVE-2023-41064

Trust: 4.75

Fetched: Sept. 22, 2023, 9:35 a.m., Published: Sept. 19, 2023, midnight
Vulnerabilities: cross-site scripting
Affected productsExternal IDs
vendor: trend model: security
Related entries in the VARIoT vulnerabilities database: VAR-202206-0004, VAR-201906-0815, VAR-202205-1958, VAR-202205-0394, VAR-202112-0566

Trust: 3.75

Fetched: Sept. 22, 2023, 9:31 a.m., Published: Sept. 5, 2023, 4:03 p.m.
Vulnerabilities: code execution, security feature bypass, feature bypass...
Affected productsExternal IDs
db: NVD ids: CVE-2021-26084, CVE-2021-31207, CVE-2022-26134, CVE-2021-34523, CVE-2018-13379, CVE-2022-30190, CVE-2022-22954, CVE-2022-1388, CVE-2022-22960, CVE-2021-40539, CVE-2021-44228, CVE-2021-34473

Trust: 3.5

Fetched: Sept. 22, 2023, 9:30 a.m., Published: Aug. 17, 2022, 1:40 p.m.
Vulnerabilities: -
Affected productsExternal IDs
vendor: palo alto networks model: networks
vendor: palo model: networks
db: NVD ids: CVE-2017-10271, CVE-2016-3088

Trust: 4.5

Fetched: Sept. 22, 2023, 9:29 a.m., Published: Sept. 21, 2023, 5:40 p.m.
Vulnerabilities: code execution, certificate validation issue
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: macos
vendor: apple model: webkit
db: NVD ids: CVE-2023-41992, CVE-2023-41991, CVE-2023-41993

Trust: 5.5

Fetched: Sept. 22, 2023, 9:22 a.m., Published: June 22, 2023, midnight
Vulnerabilities: code execution, information leak
Affected productsExternal IDs
vendor: embedthis model: appweb
db: NVD ids: CVE-2023-36846, CVE-2023-36844, CVE-2023-36845, CVE-2023-36851, CVE-2023-36847

Trust: 3.75

Fetched: Sept. 22, 2023, 9:22 a.m., Published: Sept. 22, 2023, midnight
Vulnerabilities: format string vulnerability
Affected productsExternal IDs

Trust: 5.0

Fetched: Sept. 22, 2023, 9:20 a.m., Published: Jan. 22, 2023, midnight
Vulnerabilities: resource exhaustion, replay attack, code execution...
Affected productsExternal IDs
vendor: schneider electric model: monitor
vendor: google model: android
vendor: google model: home
vendor: schneider model: monitor
vendor: treck model: tcp/ip stack
vendor: tp-link model: gateway
db: NVD ids: CVE-2020-11898, CVE-2020-11897, CVE-2020-11896, CVE-2020-11901

Trust: 3.75

Fetched: Sept. 22, 2023, 9:19 a.m., Published: Sept. 2, 2023, midnight
Vulnerabilities: cross-site scripting
Affected productsExternal IDs

Trust: 3.5

Fetched: Sept. 22, 2023, 9:17 a.m., Published: Sept. 15, 2023, 6:20 p.m.
Vulnerabilities: traffic interception, privilege escalation
Affected productsExternal IDs
vendor: rapid model: scada