Sign-up

VARIoT news about IoT security

CVE-2023-0006 GlobalProtect App: Local File Deletion Vulnerability

Trust: 3.75

Fetched: April 16, 2023, 9:28 a.m., Published: April 12, 2023, 4 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: palo model: networks
vendor: palo model: palo alto networks globalprotect
vendor: palo model: networks globalprotect
vendor: palo alto networks model: networks
vendor: palo alto networks model: palo alto networks globalprotect
vendor: palo alto networks model: networks globalprotect
db: NVD ids: CVE-2023-0006

Severe Android and Novi Survey Vulnerabilities Under Active Exploitation • Cyber-Wall | Cyber Security | Course | Certification | Penetration testing.

Trust: 5.0

Fetched: April 16, 2023, 9:28 a.m., Published: April 14, 2023, 9:24 p.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2023-20963, CVE-2023-29492

Android April 2023 Security Updates fix several critical vulnerabilities - gHacks Tech News

Trust: 4.5

Fetched: April 16, 2023, 9:25 a.m., Published: April 4, 2023, 4:42 a.m.
 Vulnerabilities: code execution, information disclosure, denial of service
Affected productsExternal IDs
vendor: google model: android
vendor: google model: wifi

Google Releases Urgent Chrome Update to Fix Actively Exploited Zero-Day Vulnerability | Secur

Trust: 3.25

Fetched: April 16, 2023, 9:24 a.m., Published: April 15, 2023, 12:34 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: chrome

Stay Safe from Silent Cyberattacks on IoT Devices | Premier Technologies

Trust: 3.0

Fetched: April 16, 2023, 9:23 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs

Google Releases Urgent Chrome Update to Fix Actively Exploited Zero-Day Vulnerability • Cyber-Wall | Cyber Security | Course | Certification | Penetration testing.

Related entries in the VARIoT vulnerabilities database: VAR-202203-1921

Trust: 4.75

Fetched: April 16, 2023, 9:23 a.m., Published: April 15, 2023, 6:49 a.m.
 Vulnerabilities: heap corruption
Affected productsExternal IDs
vendor: google model: google chrome
vendor: google model: chrome
vendor: apple model: macos
db: NVD ids: CVE-2023-2033, CVE-2022-3723, CVE-2022-1096, CVE-2022-1364, CVE-2022-4262

Watch out! Critical Unauthorized RCE Vulnerability in MSMQ Service - Check Point Software

Trust: 4.5

Fetched: April 16, 2023, 9:21 a.m., Published: April 11, 2023, 5 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: trend model: security
vendor: check point model: check point
db: NVD ids: CVE-2023-21554

Top 10 Cybersecurity Threats to Watch Out for in 2023

Trust: 4.75

Fetched: April 16, 2023, 9:19 a.m., Published: April 10, 2023, midnight
 Vulnerabilities: weak password
Affected productsExternal IDs
vendor: cisco model: routers

DSA-2023-074: Dell Trusted Device Agent Security Update for an Improper Installation Permissions Vulnerability | Dell Polska

Trust: 3.0

Fetched: April 16, 2023, 9:19 a.m., Published: May 3, 2000, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2023-25542

OnePlus Community

Trust: 3.0

Fetched: April 16, 2023, 9:17 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: oneplus model: oxygenos

Suspected Chinese hackers exploit vulnerability in Fortinet devices

Related entries in the VARIoT vulnerabilities database: VAR-202212-1132

Trust: 3.75

Fetched: April 16, 2023, 9:17 a.m., Published: Jan. 21, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2022-42475

Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Low-Entropy Keys Vulnerability - Cisco

Trust: 3.0

Fetched: April 16, 2023, 9:16 a.m., Published: March 30, 2023, 11:27 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: firepower 9300
vendor: cisco model: clientless ssl vpn
vendor: cisco model: routers
vendor: cisco model: adaptive security appliance software
vendor: cisco model: asa 5506w-x
vendor: cisco model: asa 5525-x
vendor: cisco model: asa 5516-x
vendor: cisco model: device manager
vendor: cisco model: adaptive security appliance
vendor: cisco model: cisco adaptive security appliance software
vendor: cisco model: catalyst 6500 series
vendor: cisco model: series switches
vendor: cisco model: firepower 2100
vendor: cisco model: asdm
vendor: cisco model: series routers
vendor: cisco model: cisco adaptive security appliance
vendor: cisco model: 7600 series
vendor: cisco model: catalyst 6500
vendor: cisco model: catalyst
vendor: cisco model: asa 5506h-x
vendor: cisco model: cisco catalyst 6500 series
vendor: cisco model: firepower threat defense software
vendor: cisco model: series industrial security appliances
vendor: cisco model: firepower
vendor: cisco model: cisco 7600 series
vendor: cisco model: asa software
vendor: cisco model: asa 5508-x
vendor: cisco model: firepower threat defense virtual
vendor: cisco model: firepower threat defense
vendor: cisco model: asa 5506-x
vendor: cisco model: series

Google discovers 18 vulnerabilities in multiple Samsung chips - SiliconANGLE

Trust: 5.5

Fetched: April 16, 2023, 9:16 a.m., Published: March 17, 2023, 6:49 p.m.
 Vulnerabilities: memory corruption, buffer overflow
Affected productsExternal IDs
vendor: samsung model: mobile
vendor: samsung model: exynos
vendor: samsung model: galaxy
vendor: vivo model: modems
vendor: vivo model: modem
vendor: google model: pixel
db: NVD ids: CVE-2023-24033

Cisco Email Security Appliance and Cisco Secure Email and Web Manager Vulnerabilities - Cisco

Trust: 3.0

Fetched: April 16, 2023, 9:15 a.m., Published: Feb. 17, 2023, 6:26 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: cloud email security
vendor: cisco model: cisco email security appliance
vendor: cisco model: cisco cloud email security
vendor: cisco model: email security appliance

18 zero-day flaws impact Samsung Android handsets, wearables and telematics | SC Media

Trust: 5.75

Fetched: April 16, 2023, 9:15 a.m., Published: March 17, 2023, 12:43 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: google model: android
vendor: google model: pixel
vendor: samsung model: mobile
vendor: samsung model: exynos
vendor: samsung model: mobile devices
db: NVD ids: CVE-2023-26074, CVE-2023-26075, CVE-2023-26076, CVE-2023-26072, CVE-2023-26073, CVE-2023-24033

Suspected Chinese hackers exploit vulnerability in Fortinet devices

Related entries in the VARIoT vulnerabilities database: VAR-202212-1132

Trust: 3.75

Fetched: April 16, 2023, 9:15 a.m., Published: Jan. 21, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2022-42475

Monitoring Device Lifecycle and Vulnerabilities Using Advisor - Infoblox NIOS 8.5 - Infoblox Documentation Portal

Trust: 3.0

Fetched: April 16, 2023, 9:15 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: infoblox model: nios

Cisco DNA Center Privilege Escalation Vulnerability

Trust: 4.75

Fetched: April 16, 2023, 9:14 a.m., Published: March 22, 2023, 3:49 p.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: cisco model: dna center

Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Vulnerabilities

Trust: 4.5

Fetched: April 16, 2023, 9:14 a.m., Published: April 11, 2023, 11:20 a.m.
 Vulnerabilities: information disclosure
Affected productsExternal IDs
vendor: cisco model: prime infrastructure
vendor: cisco model: evolved programmable network manager
vendor: cisco model: cisco prime infrastructure
vendor: cisco model: cisco evolved programmable network manager
db: NVD ids: CVE-2023-20129, CVE-2023-20130, CVE-2023-20127, CVE-2023-20131

Security Advisory: Multiple Vulnerabilities in NetModule Routers - ONEKEY

Trust: 3.25

Fetched: April 16, 2023, 9:13 a.m., Published: Feb. 24, 2023, 9:02 a.m.
 Vulnerabilities: path traversal, command execution, command injection
Affected productsExternal IDs
vendor: asus model: routers
vendor: asus model: router
vendor: asus model: asus