VARIoT latest news about IoT security

27 BEST Penetration Testing (Pentest) Tools in 2023 Trust: 3.25 Fetched: Aug. 30, 2023, 9:57 a.m., Published: Aug. 22, 2023, 10:20 a.m.	Vulnerabilities: sql injection, weak password

Affected products

External IDs

vendor:	essential	model:	phone
vendor:	snort	model:	snort
vendor:	snort.org	model:	snort
vendor:	apple	model:	ipad
vendor:	apple	model:	apple mac os x
vendor:	apple	model:	mac os
vendor:	apple	model:	mac os x
vendor:	apple	model:	macos
vendor:	apple	model:	iphone

PAN-OS 10.1.6 Known Issues Trust: 3.5 Fetched: Aug. 30, 2023, 9:54 a.m., Published: Oct. 1, 2006, midnight	Vulnerabilities: memory leak

Affected products

External IDs

vendor:	cisco	model:	sd-wan
vendor:	cisco	model:	series
vendor:	cisco	model:	router
vendor:	palo	model:	firewall
vendor:	palo	model:	pan-os
vendor:	palo	model:	firewall interface
vendor:	palo	model:	networks
vendor:	palo alto networks	model:	firewall
vendor:	palo alto networks	model:	pan-os
vendor:	palo alto networks	model:	firewall interface
vendor:	palo alto networks	model:	networks
vendor:	broadcom	model:	linux
vendor:	google	model:	android

Top 20 Network Scanning Tools - Network & IP Scanner Trust: 4.5 Fetched: Aug. 30, 2023, 9:49 a.m., Published: Aug. 24, 2022, 1:35 a.m.	Vulnerabilities: sql injection

Affected products

External IDs

vendor:	solarwinds	model:	network performance monitor
vendor:	essential	model:	phone
vendor:	snort	model:	snort
vendor:	nagios	model:	nagios xi

App Security Best Practices \| Android Open Source Project Trust: 3.75 Fetched: Aug. 30, 2023, 9:49 a.m., Published: Aug. 8, 2023, midnight	Vulnerabilities: privilege escalation

Affected products

External IDs

vendor:

google

model:

android

Understanding MPLS IP VPNs, Security Attacks and VPN Encryption Trust: 3.25 Fetched: Aug. 30, 2023, 9:48 a.m., Published: July 8, 2010, 11 a.m.	Vulnerabilities: denial of service, configuration flaw

Affected products

External IDs

vendor:	trend	model:	security
vendor:	cisco	model:	routers
vendor:	cisco	model:	router
vendor:	cisco systems	model:	routers
vendor:	cisco systems	model:	router

Future Internet \| Free Full-Text \| Quantum Machine Learning for Security Assessment in the Internet of Medical Things (IoMT) Trust: 4.75 Fetched: Aug. 30, 2023, 9:46 a.m., Published: Aug. 15, 2023, midnight	Vulnerabilities: denial of service

Affected products

External IDs

vendor:

axis

model:

gear

Managed Risk Scanner FAQ - Arctic Wolf Docs Trust: 4.5 Fetched: Aug. 30, 2023, 9:43 a.m., Published: -	Vulnerabilities: sql injection, denial of service, default credentials...

Affected products	External IDs

Threat Protection Policy - Sophos Central Admin Trust: 3.75 Fetched: Aug. 30, 2023, 9:42 a.m., Published: Aug. 22, 2023, midnight	Vulnerabilities: privilege escalation

Affected products

External IDs

vendor:

sophos

model:

endpoint protection

KB4073757-Protect Windows devices against silicon-based microarchitectural and speculative execution side-channel vulnerabilities - Microsoft Support Related entries in the VARIoT vulnerabilities database: VAR-201806-1505 Trust: 4.75 Fetched: Aug. 30, 2023, 9:41 a.m., Published: Feb. 28, 2020, midnight	Vulnerabilities: information disclosure

Affected products

External IDs

vendor:	google	model:	home
vendor:	google	model:	chrome
vendor:	google	model:	android

db:

NVD

ids:

CVE-2019-1125, CVE-2018-3665

Framework to measure and reduce the threat surface area for smart home devices \| SpringerLink Trust: 3.75 Fetched: Aug. 30, 2023, 9:36 a.m., Published: Aug. 1, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

google

model:

home

A vulnerability is a weakness that could be exploited to cause harm. Trust: 3.0 Fetched: Aug. 30, 2023, 9:34 a.m., Published: Aug. 3, 2023, midnight	Vulnerabilities: denial of service

Affected products	External IDs

Mitsubishi Electric CNC Series (Update A) \| CISA Trust: 5.0 Fetched: Aug. 30, 2023, 9:28 a.m., Published: Aug. 3, 2023, midnight	Vulnerabilities: buffer overflow

Affected products

External IDs

db:

NVD

ids:

CVE-2023-3346

What Is Endpoint Security and Why Does Your Company Need It? Trust: 3.75 Fetched: Aug. 30, 2023, 9:27 a.m., Published: Aug. 3, 2023, 6 a.m.	Vulnerabilities: code injection

Affected products	External IDs

Cisco Identity Services Engine Device Credential Information Disclosure Vulnerability - Cisco Trust: 5.0 Fetched: Aug. 30, 2023, 9:25 a.m., Published: Aug. 16, 2023, 11:10 a.m.	Vulnerabilities: information disclosure

Affected products

External IDs

vendor:	cisco	model:	cisco identity services engine
vendor:	cisco	model:	identity services engine

Cisco Nexus 3000 and 9000 Series Switches IS-IS Protocol Denial of Service Vulnerability Trust: 4.0 Fetched: Aug. 30, 2023, 9:25 a.m., Published: Aug. 23, 2023, 3:48 p.m.	Vulnerabilities: denial of service

Affected products

External IDs

vendor:	cisco	model:	nexus
vendor:	cisco	model:	nexus 7000
vendor:	cisco	model:	nexus 9000 series
vendor:	cisco	model:	series switches
vendor:	cisco	model:	nx-os software
vendor:	cisco	model:	1000v
vendor:	cisco	model:	nexus 9000
vendor:	cisco	model:	nexus 3000
vendor:	cisco	model:	nexus 1000v
vendor:	cisco	model:	nx-os
vendor:	cisco	model:	cisco nx-os
vendor:	cisco	model:	series

Intel - First Health Advisory Trust: 3.0 Fetched: Aug. 30, 2023, 9:22 a.m., Published: Aug. 3, 2023, midnight	Vulnerabilities: service disruption, code execution

Affected products	External IDs

ADMX_CredSsp Policy CSP - Windows Client Management \| Microsoft Learn Trust: 5.0 Fetched: Aug. 30, 2023, 9:21 a.m., Published: Aug. 10, 2023, midnight	Vulnerabilities: default credentials

Affected products

External IDs

vendor:

delegate

model:

delegate

Cisco Firepower Release Notes, Version 7.0 - Open and Resolved Bugs [Cisco Secure Firewall Management Center] - Cisco Trust: 4.25 Fetched: Aug. 30, 2023, 9:19 a.m., Published: Aug. 15, 2023, 10:09 a.m.	Vulnerabilities: code execution, denial of service, authentication issue...

Affected products

External IDs

vendor:	snort	model:	snort
vendor:	cisco	model:	cisco firepower management center
vendor:	cisco	model:	fxos
vendor:	cisco	model:	cisco firepower threat defense software
vendor:	cisco	model:	asdm
vendor:	cisco	model:	firepower threat defense software
vendor:	cisco	model:	umbrella
vendor:	cisco	model:	series
vendor:	cisco	model:	firepower threat defense
vendor:	cisco	model:	firepower
vendor:	cisco	model:	asa software
vendor:	cisco	model:	vpn client
vendor:	cisco	model:	firepower management center
vendor:	cisco	model:	eigrp
vendor:	cisco	model:	firepower 2100
vendor:	google	model:	home

db:

NVD

ids:

CVE-2022-32081, CVE-2022-22970

Secure by design Trust: 3.5 Fetched: Aug. 30, 2023, 9:17 a.m., Published: Aug. 3, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

trend

model:

security

Configure Microsoft Defender for Endpoint on iOS features \| Microsoft Learn Trust: 3.0 Fetched: Aug. 30, 2023, 9:15 a.m., Published: Dec. 18, 2020, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

apple

model:

ipad

VARIoT news about IoT security