VARIoT latest news about IoT security

CVE-2023-2262 \| Tenable® Related entries in the VARIoT vulnerabilities database: VAR-202309-2098 Trust: 5.0 Fetched: Sept. 26, 2023, 9:25 a.m., Published: -	Vulnerabilities: buffer overflow, code execution

Affected products

External IDs

db:

NVD

ids:

CVE-2023-2262

Overview of IoT threats in 2023 - GIXtools Trust: 5.25 Fetched: Sept. 26, 2023, 9:22 a.m., Published: Sept. 21, 2023, 10 a.m.	Vulnerabilities: configuration issue

Affected products

External IDs

vendor:	trend micro	model:	security
vendor:	bosch	model:	smart camera
vendor:	trend	model:	security

db:

NVD

ids:

CVE-2022-27593

CVE-2023-20269: Zero-Day Vulnerability in Cisco Adaptive Security Appliance and Firepower Threat Defense Reportedly Exploited by Ransomware Groups - Blog \| Tenable® Trust: 4.75 Fetched: Sept. 26, 2023, 9:17 a.m., Published: Sept. 12, 2023, 12:17 a.m.	Vulnerabilities: brute force attack

Affected products

External IDs

vendor:	cisco	model:	firepower
vendor:	cisco	model:	firepower threat defense
vendor:	cisco	model:	clientless ssl vpn
vendor:	cisco	model:	ios xr software
vendor:	cisco	model:	firepower management center
vendor:	cisco	model:	nx-os software
vendor:	cisco	model:	ios xr
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	nx-os
vendor:	cisco	model:	asa software
vendor:	cisco	model:	adaptive security appliance
vendor:	cisco	model:	ios software
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	fxos
vendor:	cisco	model:	cisco adaptive security appliance

db:

NVD

ids:

CVE-2023-20269

Overview of IoT threats in 2023 - Malware News - Malware Analysis, News and Indicators Trust: 5.25 Fetched: Sept. 26, 2023, 9:15 a.m., Published: Sept. 21, 2023, 10:05 a.m.	Vulnerabilities: configuration issue

Affected products

External IDs

vendor:	trend micro	model:	security
vendor:	bosch	model:	smart camera
vendor:	trend	model:	security

db:

NVD

ids:

CVE-2022-27593

"2023's Thrilling Revelation: Over 700 Dark Web Ads Now Provide DDoS Attacks Via IoT!" Trust: 3.0 Fetched: Sept. 26, 2023, 9:14 a.m., Published: -	Vulnerabilities: denial of service

Affected products	External IDs

Weekly Vulnerability Recap - 9-25-2023 - Apple & DevOps Flaws Related entries in the VARIoT vulnerabilities database: VAR-202305-1789 Trust: 5.25 Fetched: Sept. 26, 2023, 9:14 a.m., Published: Sept. 25, 2023, 6:53 p.m.	Vulnerabilities: improper access control, code execution, bypass certificate...

Affected products

External IDs

vendor:	apple	model:	watchos
vendor:	apple	model:	macos
vendor:	trend micro	model:	antivirus
vendor:	trend micro	model:	security
vendor:	trend	model:	antivirus
vendor:	trend	model:	security

db:

NVD

ids:

CVE-2023-22513, CVE-2023-41179, CVE-2022-25647, CVE-2023-41993, CVE-2023-41992, CVE-2023-22512, CVE-2023-41991, CVE-2023-5009, CVE-2023-28709

IoT threats in 2023 \| Securelist Trust: 5.25 Fetched: Sept. 26, 2023, 9:13 a.m., Published: Sept. 26, 2023, midnight	Vulnerabilities: configuration issue

Affected products

External IDs

vendor:	trend micro	model:	security
vendor:	bosch	model:	smart camera
vendor:	trend	model:	security

db:

NVD

ids:

CVE-2022-27593

Two Key Security Precautions To Protect Your Device - And Your Patients Trust: 3.0 Fetched: Sept. 26, 2023, 9:10 a.m., Published: Sept. 25, 2023, midnight	Vulnerabilities: -

Affected products	External IDs

ASPL 2023-09-01 / CVE-2023-35674 \| Threat Intelligence Trust: 5.5 Fetched: Sept. 24, 2023, 9:49 a.m., Published: Sept. 1, 2023, midnight	Vulnerabilities: use after free, integer overflow, code execution...

Affected products

External IDs

vendor:

google

model:

android

db:

NVD

ids:

CVE-2023-35658, CVE-2023-35673, CVE-2023-35681, CVE-2023-35674

Severe vulnerability found in all browsers, and it's being attacked \| PCWorld Trust: 4.0 Fetched: Sept. 24, 2023, 9:48 a.m., Published: Sept. 14, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

google

model:

chrome

db:

NVD

ids:

CVE-2023-4863

The Potential Risks of Dependent Home Systems in Smart Home Automation Trust: 3.25 Fetched: Sept. 24, 2023, 9:41 a.m., Published: Sept. 22, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	home
vendor:	google	model:	google home
vendor:	trend	model:	security
vendor:	sonicwall	model:	remote access

Pot calls the kettle hack as China claims Uncle Sam did digital sneak peek first \| Vumetric Cyber Portal Trust: 3.25 Fetched: Sept. 24, 2023, 9:40 a.m., Published: Sept. 24, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

huawei

model:

huawei

Kandji - Product updates \| Support for iOS, iPadOS, and tvOS 17 Trust: 3.0 Fetched: Sept. 24, 2023, 9:39 a.m., Published: Sept. 18, 2023, 5:44 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	apple	model:	iphone
vendor:	apple	model:	tvos
vendor:	apple	model:	icloud

What Is IoT? \| Robots.net Trust: 3.25 Fetched: Sept. 24, 2023, 9:38 a.m., Published: Sept. 16, 2023, 10:01 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	home
vendor:	apple	model:	watch
vendor:	trend	model:	security

Multiple Vulnerabilities in Notepad++ Could Allow for Arbitrary Code Execution Trust: 3.25 Fetched: Sept. 24, 2023, 9:37 a.m., Published: Sept. 12, 2023, midnight	Vulnerabilities: code execution

Affected products	External IDs

New Apple Security Updates Patch Zero-Day Vulnerabilities \| Robots.net Trust: 3.75 Fetched: Sept. 24, 2023, 9:37 a.m., Published: Sept. 22, 2023, 10:15 p.m.	Vulnerabilities: certificate validation bug

Affected products

External IDs

vendor:	apple	model:	iphone
vendor:	apple	model:	watchos
vendor:	apple	model:	watch
vendor:	apple	model:	safari
vendor:	apple	model:	webkit
vendor:	apple	model:	macos

Urgent! IOS 17 Threat Uncovered - Update Your Apple Devices Now Trust: 4.75 Fetched: Sept. 24, 2023, 9:36 a.m., Published: Sept. 22, 2023, midnight	Vulnerabilities: code execution

Affected products

External IDs

vendor:	apple	model:	iphone
vendor:	apple	model:	watchos
vendor:	apple	model:	ipad
vendor:	apple	model:	webkit
vendor:	apple	model:	macos

db:

NVD

ids:

CVE-2023-41991, CVE-2023-41993, CVE-2023-41992

Emergency update! Apple patches three zero-days Trust: 4.5 Fetched: Sept. 24, 2023, 9:33 a.m., Published: Sept. 22, 2023, 8:31 p.m.	Vulnerabilities: certificate validation issue, code execution

Affected products

External IDs

vendor:	apple	model:	safari
vendor:	apple	model:	webkit
vendor:	apple	model:	iphone
vendor:	apple	model:	macos
vendor:	apple	model:	ipad

db:

NVD

ids:

CVE-2023-41991, CVE-2023-41993, CVE-2023-41992

Delta Electronics DIAScreen \| CISA Trust: 5.75 Fetched: Sept. 24, 2023, 9:32 a.m., Published: Sept. 1, 2023, midnight	Vulnerabilities: code execution

Affected products

External IDs

vendor:	trend	model:	security
vendor:	trend micro	model:	security

db:

NVD

ids:

CVE-2023-5068

Security Vulnerability fixed in Firefox 117.0.1, Firefox ESR 115.2.1, Firefox ESR 102.15.1, Thunderbird 102.15.1, and Thunderbird 115.2.2 - Mozilla Trust: 3.25 Fetched: Sept. 24, 2023, 9:31 a.m., Published: -	Vulnerabilities: buffer overflow

Affected products	External IDs

VARIoT news about IoT security