VARIoT latest news about IoT security

BREAKING NEWS: 18 Zero-Day Bugs Found in Samsung's Exynos Chipsets, Impacting Millions of Devices Trust: 4.75 Fetched: March 21, 2023, 9:17 a.m., Published: March 20, 2023, 12:42 a.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:	samsung	model:	mobile devices
vendor:	samsung	model:	mobile
vendor:	samsung	model:	exynos
vendor:	google	model:	pixel

db:

NVD

ids:

CVE-2023-24033

Serious security vulnerabilities in many smartphones and car computers. This is a list of infected devices - Teller Report Trust: 3.5 Fetched: March 21, 2023, 9:15 a.m., Published: March 19, 2023, 5:09 p.m.	Vulnerabilities: code execution, privilege escalation

Affected products

External IDs

vendor:	samsung	model:	galaxy
vendor:	samsung	model:	exynos
vendor:	samsung	model:	samsung galaxy
vendor:	vivo	model:	modem
vendor:	vivo	model:	modems
vendor:	google	model:	pixel

Google’s bug bounty team detects 18 zero-day vulnerabilities in Samsung’s Exynos chipset - The Hindu Trust: 4.75 Fetched: March 21, 2023, 9:14 a.m., Published: March 20, 2023, 8:31 a.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:	samsung	model:	mobile devices
vendor:	samsung	model:	mobile
vendor:	samsung	model:	exynos
vendor:	vivo	model:	modem
vendor:	google	model:	pixel

Unpatched Samsung Chipset Vulnerabilities Open Android Users to RCE Attacks Trust: 5.5 Fetched: March 21, 2023, 9:14 a.m., Published: March 20, 2023, 8 p.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:	samsung	model:	mobile devices
vendor:	samsung	model:	galaxy
vendor:	samsung	model:	exynos
vendor:	samsung	model:	notes
vendor:	samsung	model:	samsung galaxy
vendor:	samsung	model:	mobile
vendor:	google	model:	pixel
vendor:	google	model:	android

db:

NVD

ids:

CVE-2023-26498, CVE-2023-24033, CVE-2023-26497, CVE-2023-26496

Multiple vulnerabilities in Siemens SCALANCE W1750D Devices Related entries in the VARIoT vulnerabilities database: VAR-202302-0195, VAR-202302-0482 Trust: 5.25 Fetched: March 21, 2023, 9:13 a.m., Published: March 15, 2023, midnight	Vulnerabilities: denial of service, use after free, information exposure

Affected products

External IDs

vendor:	siemens	model:	scalance w1750d
vendor:	siemens	model:	w1750d
vendor:	siemens	model:	scalance

db:

NVD

ids:

CVE-2022-4450, CVE-2023-0215, CVE-2022-4304, CVE-2023-0286

Cyberattackers Continue Assault Against Fortinet Devices Trust: 3.75 Fetched: March 21, 2023, 9:13 a.m., Published: March 15, 2023, 8:53 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

fortigate

model:

fortios

db:

NVD

ids:

CVE-2023-25610, CVE-2022-41328

Disclosure: Supervisor security vulnerability - Home Assistant Related entries in the VARIoT vulnerabilities database: VAR-202303-0543 Trust: 3.25 Fetched: March 21, 2023, 9:12 a.m., Published: March 8, 2023, midnight	Vulnerabilities: -

Affected products

External IDs

db:

NVD

ids:

CVE-2023-27482

Companies urged to patch critical vulnerability in Fortinet FortiNAC \| CSO Online Related entries in the VARIoT vulnerabilities database: VAR-202302-1271 Trust: 4.75 Fetched: March 21, 2023, 9:11 a.m., Published: Feb. 23, 2023, 9:20 p.m.	Vulnerabilities: path traversal, code execution, command execution

Affected products

External IDs

db:

NVD

ids:

CVE-2022-39952

'New Class of Bugs' in Apple Devices Opens the Door to Complete Takeover Related entries in the VARIoT vulnerabilities database: VAR-202302-2045, VAR-202302-2240 Trust: 3.5 Fetched: March 21, 2023, 9:10 a.m., Published: Feb. 24, 2023, 7:41 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	apple	model:	ipad
vendor:	apple	model:	macos
vendor:	apple	model:	iphone

db:

NVD

ids:

CVE-2023-23530, CVE-2023-23531

Google warns users about 18 vulnerabilities in Samsung Exynos chipsets: Here’s the list of affected devices - Buopso News Trust: 4.75 Fetched: March 19, 2023, 9:21 a.m., Published: March 17, 2023, 12:25 p.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:	samsung	model:	exynos
vendor:	samsung	model:	mobile
vendor:	samsung	model:	mobile devices
vendor:	google	model:	android
vendor:	google	model:	pixel

18 Zero-Day Vulnerabilities In Samsung Exynos Chipsets: What You Need To Know \| InfoSecChamp.com Trust: 4.5 Fetched: March 19, 2023, 9:20 a.m., Published: March 18, 2023, 4:03 p.m.	Vulnerabilities: memory corruption

Affected products

External IDs

vendor:	samsung	model:	galaxy
vendor:	samsung	model:	samsung galaxy
vendor:	samsung	model:	exynos
vendor:	samsung	model:	note
vendor:	samsung	model:	galaxy s7
vendor:	samsung	model:	galaxy note

Several zero day vulnerabilities are plaguing Android devices with Samsung chips, warns Google - All About The Tech world! Trust: 4.75 Fetched: March 19, 2023, 9:20 a.m., Published: March 17, 2023, 11:06 a.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:	samsung	model:	exynos
vendor:	samsung	model:	mobile
vendor:	samsung	model:	mobile devices
vendor:	google	model:	android
vendor:	google	model:	pixel
vendor:	vivo	model:	modems

db:

NVD

ids:

CVE-2023-24033

Several zero day vulnerabilities are plaguing Android devices with Samsung chips, warns Google - Computer Hunter Trust: 5.75 Fetched: March 19, 2023, 9:20 a.m., Published: March 19, 2023, midnight	Vulnerabilities: code execution

Affected products

External IDs

vendor:	vivo	model:	modems
vendor:	samsung	model:	exynos
vendor:	samsung	model:	mobile
vendor:	samsung	model:	mobile devices
vendor:	google	model:	android
vendor:	google	model:	pixel

db:

NVD

ids:

CVE-2023-24033

Google finds 18 zero-day vulnerabilities in Samsung Exynos chipsets - Cyber Reports Cybersecurity News & Information Trust: 5.5 Fetched: March 19, 2023, 9:19 a.m., Published: March 17, 2023, 4:26 p.m.	Vulnerabilities: denial of service, code execution

Affected products

External IDs

vendor:	samsung	model:	exynos
vendor:	samsung	model:	mobile
vendor:	samsung	model:	mobile devices
vendor:	google	model:	wifi
vendor:	google	model:	pixel
vendor:	vivo	model:	modem

db:

NVD

ids:

CVE-2023-24033, CVE-2023-24075, CVE-2023-24073, CVE-2023-24076, CVE-2023-24072, CVE-2023-24074

Exynos Vulnerabilities Found, Pixel Phones in Trouble Trust: 4.75 Fetched: March 19, 2023, 9:19 a.m., Published: March 17, 2023, 3:09 p.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:	samsung	model:	galaxy
vendor:	samsung	model:	exynos
vendor:	samsung	model:	mobile
vendor:	samsung	model:	mobile devices
vendor:	google	model:	wifi
vendor:	google	model:	pixel
vendor:	vivo	model:	modems

Google discovers severe vulnerabilities in Exynos modem, suggests disabling VoLTE and Wi-Fi calling - check affected device list - RPRNA Trust: 5.75 Fetched: March 19, 2023, 9:17 a.m., Published: March 17, 2023, 9:31 a.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:	vivo	model:	modem
vendor:	vivo	model:	modems
vendor:	samsung	model:	galaxy
vendor:	samsung	model:	samsung galaxy
vendor:	samsung	model:	exynos
vendor:	samsung	model:	mobile
vendor:	google	model:	pixel

db:

NVD

ids:

CVE-2023-24033

Google warns users about 18 vulnerabilities in Samsung Exynos chipsets: Here’s the list of affected devices Trust: 4.75 Fetched: March 19, 2023, 9:17 a.m., Published: March 18, 2023, midnight	Vulnerabilities: code execution

Affected products

External IDs

vendor:	samsung	model:	exynos
vendor:	samsung	model:	mobile
vendor:	samsung	model:	mobile devices
vendor:	google	model:	android
vendor:	google	model:	pixel

Google Reveals Samsung Phones Could Be Hacked Without Owners Knowing: Here's How Trust: 4.75 Fetched: March 19, 2023, 9:16 a.m., Published: March 17, 2023, 10:43 a.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:	samsung	model:	galaxy
vendor:	samsung	model:	exynos
vendor:	samsung	model:	mobile
vendor:	google	model:	android
vendor:	google	model:	pixel
vendor:	vivo	model:	modem
vendor:	vivo	model:	modems

db:

NVD

ids:

CVE-2023-24033, CVE-2023-26073, CVE-2023-26076, CVE-2023-26074, CVE-2023-26075, CVE-2023-26072

Galaxy S22 & Pixel 7 at risk due to critical Exynos vulnerabilities Trust: 3.75 Fetched: March 19, 2023, 9:16 a.m., Published: March 17, 2023, 3:36 p.m.	Vulnerabilities: code execution

Affected products

External IDs

vendor:	vivo	model:	modem
vendor:	vivo	model:	modems
vendor:	essential	model:	phone
vendor:	samsung	model:	exynos
vendor:	samsung	model:	galaxy
vendor:	samsung	model:	mobile
vendor:	google	model:	pixel

Google Warns of “Severe Vulnerability” on Pixel and Samsung Galaxy Devices - Review Geek Trust: 4.75 Fetched: March 19, 2023, 9:16 a.m., Published: March 5, 2023, midnight	Vulnerabilities: code execution

Affected products

External IDs

vendor:	vivo	model:	modem
vendor:	vivo	model:	modems
vendor:	samsung	model:	galaxy
vendor:	samsung	model:	notes
vendor:	samsung	model:	samsung galaxy
vendor:	samsung	model:	exynos
vendor:	samsung	model:	mobile
vendor:	samsung	model:	mobile devices
vendor:	google	model:	android
vendor:	google	model:	pixel

db:

NVD

ids:

CVE-2023-24033

VARIoT news about IoT security