VARIoT latest news about IoT security

Exim finally fixes 3 out of 6 vulnerabilities Trust: 3.0 Fetched: Oct. 6, 2023, 10 a.m., Published: Oct. 5, 2023, 12:32 p.m.	Vulnerabilities: -

Affected products

External IDs

db:

NVD

ids:

CVE-2023-42118, CVE-2023-42117, CVE-2023-42115, CVE-2023-42114, CVE-2023-42116, CVE-2023-42219

Exim SMTP Zero-day Flaw Let Attackers Execute Remote Code Trust: 3.75 Fetched: Oct. 6, 2023, 9:59 a.m., Published: Oct. 5, 2023, 5:25 a.m.	Vulnerabilities: information disclosure, buffer overflow, improper validation...

Affected products

External IDs

db:

NVD

ids:

CVE-2023-42118, CVE-2023-42117, CVE-2023-42115, CVE-2023-42114, CVE-2023-42119, CVE-2023-42116

Security risks in the hardware and software supply chains. Patches and proofs-of-concept. A look at recent incidents hitting major corporations. Online surveillance and social credit in Russia. Trust: 4.25 Fetched: Oct. 6, 2023, 9:54 a.m., Published: Oct. 1, 2023, midnight	Vulnerabilities: buffer overflow, privilege escalation, code execution

Affected products

External IDs

vendor:	palo	model:	networks
vendor:	google	model:	home
vendor:	google	model:	android
vendor:	google	model:	google chrome
vendor:	google	model:	chrome
vendor:	cisco	model:	series
vendor:	cisco	model:	router
vendor:	palo alto networks	model:	networks
vendor:	apple	model:	macos
vendor:	apple	model:	iphone

db:

NVD

ids:

CVE-2023-42824, CVE-2023-5217

Update now! Apple patches vulnerabilities on iPhone and iPad Trust: 5.75 Fetched: Oct. 6, 2023, 9:54 a.m., Published: -	Vulnerabilities: heap corruption, buffer overflow, code execution

Affected products

External IDs

vendor:	apple	model:	ipad air
vendor:	apple	model:	iphone
vendor:	apple	model:	ipad

db:

NVD

ids:

CVE-2023-42824, CVE-2023-5217

CVE-2023-20101: A Critical Security Vulnerability in Cisco Emergency Responder Trust: 3.75 Fetched: Oct. 6, 2023, 9:52 a.m., Published: May 6, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	emergency responder software
vendor:	cisco	model:	emergency responder
vendor:	cisco	model:	cisco emergency responder
vendor:	cisco	model:	cisco emergency responder software

db:

NVD

ids:

CVE-2023-20101

CVE-2023-20101 \| Tenable® Trust: 3.75 Fetched: Oct. 6, 2023, 9:51 a.m., Published: Oct. 4, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	emergency responder
vendor:	cisco	model:	cisco emergency responder

db:

NVD

ids:

CVE-2023-20101

Denial Of Service Vulnerability Cisco Cert-in: Govt warns of denial of service vulnerability in Cisco; severity rating high, ET Government Trust: 5.0 Fetched: Oct. 6, 2023, 9:50 a.m., Published: Oct. 6, 2023, 7:23 a.m.	Vulnerabilities: denial of service

Affected products

External IDs

vendor:	cisco	model:	unified communications manager
vendor:	cisco	model:	unity
vendor:	cisco	model:	prime collaboration
vendor:	cisco	model:	unified communications

Microsoft SharePoint Server Vulnerabilities Achieve RCE Trust: 3.75 Fetched: Oct. 6, 2023, 9:50 a.m., Published: Sept. 29, 2023, 2:18 p.m.	Vulnerabilities: authentication bypass, privilege escalation, command execution...

Affected products

External IDs

db:

NVD

ids:

CVE-2023-29357, CVE-2023-24955

Cubo Ai Plus Review \| Mumsnet Trust: 3.5 Fetched: Oct. 6, 2023, 9:49 a.m., Published: Oct. 2, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	home
vendor:	google	model:	android
vendor:	google	model:	wifi
vendor:	sony	model:	camera

Arm Patches Major Vulnerabilities in Android Device GPU Drivers By Investing.com Trust: 3.75 Fetched: Oct. 6, 2023, 9:49 a.m., Published: -	Vulnerabilities: -

Affected products

External IDs

vendor:	samsung	model:	galaxy
vendor:	motorola	model:	motorola
vendor:	motorola	model:	android
vendor:	google	model:	android
vendor:	xiaomi	model:	redmi

db:

NVD

ids:

CVE-2023-34970, CVE-2023-4211, CVE-2023-33200, CVE-2023-26083, CVE-2022-22706

The WPI Hub \| News \| Chrome And Firefox Browser Security Updates Trust: 3.25 Fetched: Oct. 6, 2023, 9:49 a.m., Published: Sept. 27, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

google

model:

chrome

Top 5 Cybersecurity Threats in 2023 and How to Defend Against Them - Aurosign Trust: 4.75 Fetched: Oct. 6, 2023, 9:48 a.m., Published: Oct. 2, 2023, 4:25 a.m.	Vulnerabilities: default password

Affected products

External IDs

vendor:

trend

model:

security

I’m a hacking expert - check hidden number in overlooked phone menu right now or you’re in serious danger \| The US Sun Trust: 3.75 Fetched: Oct. 6, 2023, 9:48 a.m., Published: Oct. 5, 2023, 8:11 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	huawei	model:	huawei
vendor:	google	model:	android

db:

NVD

ids:

CVE-2023-4863, CVE-2023-4211

Protecting Your Network: Cisco's Recent Updates and Why They Matter Trust: 3.75 Fetched: Oct. 6, 2023, 9:47 a.m., Published: Oct. 3, 2023, midnight	Vulnerabilities: denial of service

Affected products

External IDs

vendor:	cisco	model:	cisco ios
vendor:	cisco	model:	series
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	catalyst switches
vendor:	cisco	model:	catalyst
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	series switches

Cisco IOx Application Hosting Environment Privilege Escalation Vulnerability - Cisco Trust: 5.0 Fetched: Oct. 6, 2023, 9:42 a.m., Published: Oct. 5, 2023, 11:09 p.m.	Vulnerabilities: privilege escalation

Affected products

External IDs

vendor:	cisco	model:	ios xe
vendor:	cisco	model:	cisco iox
vendor:	cisco	model:	cisco iox application
vendor:	cisco	model:	iox application
vendor:	cisco	model:	cisco ios
vendor:	cisco	model:	ios xe software

CVE-2023-41294 - vulnerability database \| Vulners.com Trust: 3.75 Fetched: Oct. 6, 2023, 9:42 a.m., Published: Sept. 25, 2023, 12:15 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

huawei

model:

huawei

db:

NVD

ids:

CVE-2023-41294

I’m a hacking expert - check hidden number in overlooked phone menu right now or you’re in serious danger \| The Irish Sun Trust: 3.75 Fetched: Oct. 6, 2023, 9:40 a.m., Published: Oct. 5, 2023, 8:11 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	huawei	model:	huawei
vendor:	google	model:	android

db:

NVD

ids:

CVE-2023-4863, CVE-2023-4211

Cisco Plugs Gaping Hole in Emergency Responder Software - SecurityWeek Trust: 3.75 Fetched: Oct. 6, 2023, 9:38 a.m., Published: Oct. 5, 2023, 5:28 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	emergency responder software
vendor:	cisco	model:	router
vendor:	cisco	model:	unified communications manager
vendor:	cisco	model:	cisco unified communications manager
vendor:	cisco	model:	cisco emergency responder
vendor:	cisco	model:	unified communications
vendor:	cisco	model:	webex
vendor:	cisco	model:	emergency responder
vendor:	cisco	model:	cisco emergency responder software
vendor:	cisco	model:	webex player

db:

NVD

ids:

CVE-2023-20101

About the security content of iOS 17.0.3 and iPadOS 17.0.3 - Apple Support Trust: 5.75 Fetched: Oct. 6, 2023, 9:36 a.m., Published: Oct. 4, 2023, midnight	Vulnerabilities: buffer overflow, code execution

Affected products

External IDs

vendor:	apple	model:	webkit
vendor:	apple	model:	ipad air
vendor:	apple	model:	iphone
vendor:	apple	model:	ipad

db:

NVD

ids:

CVE-2023-42824, CVE-2023-5217

I’m a hacking expert - check hidden number in overlooked phone menu right now or you’re in serious danger \| The Sun Trust: 3.75 Fetched: Oct. 6, 2023, 9:34 a.m., Published: Oct. 5, 2023, 8:11 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	huawei	model:	huawei
vendor:	google	model:	android

db:

NVD

ids:

CVE-2023-4863, CVE-2023-4211

VARIoT news about IoT security