VARIoT latest news about IoT security

Shield Your Device: Mitigating Bluetooth Vulnerability Risks Trust: 5.25 Fetched: Dec. 24, 2023, 9:19 a.m., Published: Dec. 14, 2023, 6:13 p.m.	Vulnerabilities: authentication bypass, code execution

Affected products

External IDs

vendor:	apple	model:	macos
vendor:	google	model:	pixel
vendor:	google	model:	android

db:

NVD

ids:

CVE-2023-45866

Shield Your Device: Mitigating Bluetooth Vulnerability Risks Trust: 5.25 Fetched: Dec. 24, 2023, 9:18 a.m., Published: Dec. 14, 2023, 6:13 p.m.	Vulnerabilities: authentication bypass, code execution

Affected products

External IDs

vendor:	apple	model:	macos
vendor:	google	model:	pixel
vendor:	google	model:	android

db:

NVD

ids:

CVE-2023-45866

Shield Your Device: Mitigating Bluetooth Vulnerability Risks Trust: 5.25 Fetched: Dec. 24, 2023, 9:18 a.m., Published: Dec. 14, 2023, 6:13 p.m.	Vulnerabilities: authentication bypass, code execution

Affected products

External IDs

vendor:	apple	model:	macos
vendor:	google	model:	pixel
vendor:	google	model:	android

db:

NVD

ids:

CVE-2023-45866

Over a Dozen Critical RCE Vulnerabilities in Ivanti Avalanche; Actively Exploited Chrome Zero-Day, CVE-2023-7024 Trust: 5.5 Fetched: Dec. 24, 2023, 9:18 a.m., Published: Dec. 21, 2023, 12:41 p.m.	Vulnerabilities: buffer overflow, memory corruption, code execution...

Affected products

External IDs

vendor:	google	model:	google chrome
vendor:	google	model:	chrome
vendor:	mobileiron	model:	sentry

db:

NVD

ids:

CVE-2023-46258, CVE-2023-46257, CVE-2023-46222, CVE-2023-46220, CVE-2023-38035, CVE-2023-46261, CVE-2023-46217, CVE-2023-7024, CVE-2023-46221, CVE-2023-35078, CVE-2023-32560, CVE-2023-46223, CVE-2023-46224, CVE-2023-46216, CVE-2023-41727, CVE-2023-46259, CVE-2023-46225

Shield Your Device: Mitigating Bluetooth Vulnerability Risks Trust: 5.25 Fetched: Dec. 24, 2023, 9:16 a.m., Published: Dec. 14, 2023, 6:13 p.m.	Vulnerabilities: authentication bypass, code execution

Affected products

External IDs

vendor:	apple	model:	macos
vendor:	google	model:	pixel
vendor:	google	model:	android

db:

NVD

ids:

CVE-2023-45866

10 IoT vulnerabilities to be aware of + protection tips - Norton Trust: 3.25 Fetched: Dec. 24, 2023, 9:08 a.m., Published: Dec. 10, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	google	model:	home
vendor:	google	model:	google home

Shield Your Device: Mitigating Bluetooth Vulnerability Risks - Security Boulevard Trust: 5.5 Fetched: Dec. 24, 2023, 9:07 a.m., Published: Dec. 21, 2023, 7 a.m.	Vulnerabilities: authentication bypass, code execution

Affected products

External IDs

vendor:	apple	model:	macos
vendor:	google	model:	pixel
vendor:	google	model:	android

db:

NVD

ids:

CVE-2023-45866

System BIOS komputerów Dell OptiPlex 7760 i 7460 All-in-One \| Szczegóły sterownika \| Dell Polska Trust: 3.0 Fetched: Dec. 20, 2023, 9:28 a.m., Published: Dec. 20, 7760, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	dell	model:	optiplex
vendor:	dell	model:	bios

System BIOS komputerów Dell Inspiron 7706 2 w 1 \| Szczegóły sterownika \| Dell Polska Trust: 3.25 Fetched: Dec. 20, 2023, 9:28 a.m., Published: Feb. 20, 7706, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

dell

model:

bios

Dell OptiPlex 5260 All-In-One System BIOS \| Szczegóły sterownika \| Dell Polska Trust: 3.0 Fetched: Dec. 20, 2023, 9:27 a.m., Published: Dec. 20, 5260, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	dell	model:	optiplex
vendor:	dell	model:	bios

About the security content of iOS 15.7 and iPadOS 15.7 - Apple Support Related entries in the VARIoT vulnerabilities database: VAR-202210-1486, VAR-202210-1881, VAR-202209-0760, VAR-202210-1496, VAR-202209-0764, VAR-202209-0769, VAR-202209-0761, VAR-202210-1478, VAR-202210-1485, VAR-202209-0768, VAR-202209-0762, VAR-202210-1497, VAR-202210-1487, VAR-202209-0763, VAR-202209-0770, VAR-202209-0772, VAR-202209-0773, VAR-202210-1470, VAR-202210-1489, VAR-202209-0759 Trust: 5.25 Fetched: Dec. 20, 2023, 9:27 a.m., Published: Dec. 15, 2023, midnight	Vulnerabilities: memory corruption, code execution, buffer overflow

Affected products

External IDs

vendor:	apple	model:	ipad
vendor:	apple	model:	ipad air
vendor:	apple	model:	iphone
vendor:	apple	model:	ipod touch
vendor:	apple	model:	safari
vendor:	apple	model:	webkit
vendor:	trend	model:	security
vendor:	trend micro	model:	security

db:

NVD

ids:

CVE-2022-42790, CVE-2022-32929, CVE-2022-32795, CVE-2022-42796, CVE-2022-32854, CVE-2022-32911, CVE-2022-32886, CVE-2022-32879, CVE-2022-42793, CVE-2022-32868, CVE-2022-32872, CVE-2022-32899, CVE-2022-32898, CVE-2022-32883, CVE-2022-32912, CVE-2022-32908, CVE-2022-32864, CVE-2022-32892, CVE-2022-32888, CVE-2022-32917

System BIOS komputerów Dell Inspiron 7706 2 w 1 \| Szczegóły sterownika \| Dell Polska Trust: 3.25 Fetched: Dec. 20, 2023, 9:27 a.m., Published: Feb. 20, 7706, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

dell

model:

bios

Apple Shuts Down Flipper Zero’s Ability to Shut Down iPhones Trust: 3.75 Fetched: Dec. 20, 2023, 9:26 a.m., Published: Dec. 15, 2023, 5:15 p.m.	Vulnerabilities: denial of service

Affected products

External IDs

vendor:	apple	model:	iphone
vendor:	apple	model:	watch

Dell OptiPlex 5260 All-In-One System BIOS \| Szczegóły sterownika \| Dell Polska Trust: 3.0 Fetched: Dec. 20, 2023, 9:26 a.m., Published: Dec. 20, 5260, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	dell	model:	optiplex
vendor:	dell	model:	bios

Dell OptiPlex 5260 All-In-One System BIOS \| Szczegóły sterownika \| Dell Polska Trust: 3.0 Fetched: Dec. 20, 2023, 9:26 a.m., Published: Dec. 20, 5260, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	dell	model:	optiplex
vendor:	dell	model:	bios

Cisco Flaws Put Millions of Workplace Devices at Risk \| WIRED Trust: 3.0 Fetched: Dec. 20, 2023, 9:19 a.m., Published: Feb. 5, 2020, 4:56 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

cisco

model:

routers

NSA and CISA Release Advisory on Top Ten Cybersecurity Misconfigurations \| CISA Trust: 3.25 Fetched: Dec. 20, 2023, 9:18 a.m., Published: Dec. 19, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

trend

model:

security

CVE-2023-44094 \| Vulnerability Database \| Aqua Security Trust: 4.0 Fetched: Dec. 20, 2023, 9:18 a.m., Published: Oct. 11, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

huawei

model:

huawei

db:

NVD

ids:

CVE-2023-44094

Alert: F5 Warns of Active Attacks Exploiting BIG-IP Vulnerability Trust: 3.75 Fetched: Dec. 20, 2023, 9:11 a.m., Published: Nov. 1, 2023, 4:53 a.m.	Vulnerabilities: code execution, sql injection

Affected products

External IDs

db:

NVD

ids:

CVE-2023-46747, CVE-2023-46748

Cisco IOS XE Web UI Vulnerability: A Glimpse into CVE-2023-20198 - Horizon3.ai Related entries in the VARIoT vulnerabilities database: VAR-202103-0773 Trust: 4.5 Fetched: Dec. 20, 2023, 9:10 a.m., Published: Oct. 19, 2023, 10:34 p.m.	Vulnerabilities: privilege escalation, user interface vulnerability

Affected products

External IDs

vendor:	cisco	model:	routers
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	cisco ios xe
vendor:	cisco	model:	ios xe
vendor:	cisco	model:	cisco ios

db:

NVD

ids:

CVE-2023-20198, CVE-2021-1435

VARIoT news about IoT security