VARIoT latest news about IoT security

A zero trust architecture for health information systems \| Health and Technology Trust: 3.5 Fetched: Dec. 27, 2023, 9:45 a.m., Published: Dec. 26, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	home
vendor:	trend	model:	security

Barracuda Vulnerabilities: Proactive Response Saves The Day Trust: 5.5 Fetched: Dec. 27, 2023, 9:38 a.m., Published: Dec. 27, 2023, 6:26 a.m.	Vulnerabilities: code execution, code injection

Affected products

External IDs

vendor:	barracuda	model:	barracuda
vendor:	barracuda networks	model:	barracuda

db:

NVD

ids:

CVE-2023-7102, CVE-2023-2868, CVE-2023-7101

Category: Android - Antimalware Zone Trust: 3.25 Fetched: Dec. 27, 2023, 9:37 a.m., Published: -	Vulnerabilities: -

Affected products

External IDs

vendor:

google

model:

android

Nmap Cheat Sheet 2024: All the Commands & Flags Trust: 3.5 Fetched: Dec. 27, 2023, 9:36 a.m., Published: Dec. 13, 2022, 4:14 p.m.	Vulnerabilities: remote file inclusion, default credentials, file inclusion

Affected products

External IDs

vendor:

google

model:

wifi

CVE-2020-12695: CallStranger Vulnerability in Universal Plug and Play (UPnP) Puts Billions of Devices At Risk - Blog \| Tenable® Related entries in the VARIoT vulnerabilities database: VAR-202006-0391 Trust: 5.5 Fetched: Dec. 27, 2023, 9:34 a.m., Published: June 8, 2020, 11:24 p.m.	Vulnerabilities: denial of service, request forgery

Affected products

External IDs

vendor:	ubiquiti	model:	unifi
vendor:	ubiquiti	model:	unifi controller
vendor:	hewlett packard	model:	officejet
vendor:	hewlett packard	model:	deskjet
vendor:	hewlett packard	model:	envy
vendor:	hewlett packard	model:	stream
vendor:	cisco	model:	wap351
vendor:	cisco	model:	wireless access point
vendor:	cisco	model:	wap150
vendor:	cisco	model:	wap131
vendor:	cisco	model:	series
vendor:	tp-link	model:	archer c50
vendor:	asus	model:	asus
vendor:	nokia	model:	impact
vendor:	nokia	model:	series
vendor:	ruckus	model:	zonedirector
vendor:	samsung	model:	printers
vendor:	huawei	model:	hg255s
vendor:	huawei	model:	hg532e
vendor:	huawei	model:	huawei
vendor:	broadcom	model:	adsl

db:

NVD

ids:

CVE-2020-12695

FBI warns of vulnerabilities in medical devices following several CISA alerts Trust: 3.75 Fetched: Dec. 27, 2023, 9:34 a.m., Published: Sept. 12, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	palo alto networks	model:	networks
vendor:	palo	model:	networks

Enhanced Risk Assessment and Vulnerability Scoring for Medical Devices - Rubric for CVSS \| by Sunil Kumar \| Deep Armor \| Medium Trust: 3.75 Fetched: Dec. 27, 2023, 9:33 a.m., Published: Dec. 31, 2023, midnight	Vulnerabilities: denial of service

Affected products	External IDs

Mobile Security: Threats and Best Practices Trust: 3.25 Fetched: Dec. 27, 2023, 9:25 a.m., Published: Dec. 7, 2020, midnight	Vulnerabilities: cross-site scripting, privilege escalation

Affected products

External IDs

vendor:	google	model:	android
vendor:	google	model:	home
vendor:	blackberry	model:	link
vendor:	blackberry	model:	smartphone
vendor:	blackberry	model:	blackberry
vendor:	essential	model:	phone
vendor:	trend	model:	security
vendor:	trend	model:	antivirus

8 Free and Open Source Patch Management Tools Your Company Needs Trust: 3.5 Fetched: Dec. 27, 2023, 9:18 a.m., Published: Feb. 20, 2023, 2 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	android
vendor:	google	model:	chrome
vendor:	apple	model:	macos

CVE-2023-38039 - Security Update Guide - Microsoft - Hackerone: CVE-2023-38039 HTTP headers eat all memory Trust: 4.25 Fetched: Dec. 27, 2023, 9:17 a.m., Published: -	Vulnerabilities: denial of service

Affected products

External IDs

db:

NVD

ids:

CVE-2023-38039

New Sneaky Xamalicious Android Malware Hits Over 327,000 Devices Trust: 3.0 Fetched: Dec. 27, 2023, 9:16 a.m., Published: Dec. 27, 2023, 8:24 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

google

model:

android

Hackers Exploit Fingerprint Sensor Vulnerabilities to Bypass Windows Hello Trust: 3.75 Fetched: Dec. 27, 2023, 9:15 a.m., Published: Nov. 23, 2023, 1:43 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	lenovo	model:	system
vendor:	lenovo	model:	thinkpad

db:

NVD

ids:

CVE-2021-34466

Update Chrome ASAP to patch this zero-day security flaw \| Android Central Trust: 4.75 Fetched: Dec. 26, 2023, 9:36 a.m., Published: Nov. 30, 2023, 2:12 a.m.	Vulnerabilities: code execution, integer overflow

Affected products

External IDs

vendor:	google	model:	android
vendor:	google	model:	google chrome
vendor:	google	model:	chrome

db:

NVD

ids:

CVE-2023-6345

Network Defense - My Knowledge Check Answers Trust: 3.25 Fetched: Dec. 26, 2023, 9:34 a.m., Published: Dec. 20, 2023, 10:09 a.m.	Vulnerabilities: account lockout, message forgery

Affected products

External IDs

vendor:	wireshark	model:	wireshark
vendor:	cisco	model:	intrusion prevention system
vendor:	cisco	model:	routers
vendor:	cisco	model:	cisco ios
vendor:	cisco	model:	router
vendor:	cisco	model:	wireless controller
vendor:	cisco	model:	hsrp

Google fixes three Chromecast device vulnerabilities Related entries in the VARIoT vulnerabilities database: VAR-202312-2135, VAR-202312-2038, VAR-202312-1510 Trust: 3.5 Fetched: Dec. 26, 2023, 9:32 a.m., Published: Dec. 6, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	android
vendor:	google	model:	chromecast

db:

NVD

ids:

CVE-2023-6181, CVE-2023-48425, CVE-2023-48424

What to Look for in a VPN: Important Considerations Trust: 3.5 Fetched: Dec. 26, 2023, 9:32 a.m., Published: Dec. 20, 2023, 5:18 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	mesh	model:	mesh
vendor:	essential	model:	phone
vendor:	google	model:	wifi
vendor:	google	model:	home
vendor:	google	model:	google wifi
vendor:	google	model:	android

20 Most Dangerous Ransomware Attacks in the World 2023 - Top and Trending Trust: 3.75 Fetched: Dec. 26, 2023, 9:30 a.m., Published: Dec. 22, 2023, 4:32 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

google

model:

android

LogoFAIL: UEFI Vulnerabilities Expose Devices to Stealth Mal... - vulnerability database \| Vulners.com Trust: 3.75 Fetched: Dec. 26, 2023, 9:30 a.m., Published: Dec. 4, 2023, 6:53 a.m.	Vulnerabilities: buffer overflow

Affected products

External IDs

vendor:	lenovo	model:	system
vendor:	lenovo	model:	bios

Government Warns iPhone Users, Says High-Risk Of Losing Sensitive Info Trust: 3.75 Fetched: Dec. 26, 2023, 9:29 a.m., Published: Dec. 16, 2023, 4:24 a.m.	Vulnerabilities: denial of service

Affected products

External IDs

vendor:	apple	model:	safari
vendor:	apple	model:	iphone
vendor:	apple	model:	tvos
vendor:	apple	model:	macos
vendor:	apple	model:	watchos
vendor:	samsung	model:	samsung mobile
vendor:	samsung	model:	mobile
vendor:	samsung	model:	galaxy
vendor:	samsung	model:	samsung galaxy

160 Cybersecurity Statistics: Updated Report 2024 Trust: 3.5 Fetched: Dec. 26, 2023, 9:27 a.m., Published: Dec. 19, 2022, 4:48 a.m.	Vulnerabilities: denial of service

Affected products

External IDs

vendor:	blackberry	model:	blackberry
vendor:	sonicwall	model:	web application firewall
vendor:	trend	model:	security
vendor:	trend	model:	antivirus
vendor:	trend	model:	password manager

VARIoT news about IoT security