Sign-up

VARIoT news about IoT security

Top Emerging Cybersecurity Threats and Defensive Mechanism to be Safe | HackerNoon

Trust: 3.5

Fetched: Nov. 27, 2022, 9:16 a.m., Published: Nov. 19, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: essential model: phone
vendor: google model: android
vendor: trend model: antivirus
vendor: trend model: security
vendor: apple model: iphone

CISA Tells Organizations to Patch Linux Kernel Vulnerability Exploited by Malware | SecurityWeek.Com

Trust: 4.0

Fetched: Nov. 27, 2022, 9:13 a.m., Published: Nov. 27, 2022, midnight
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2021-3493, CVE-2021-4034

How works Microsoft Defender Vulnerability Management (MDVM)

Related entries in the VARIoT vulnerabilities database: VAR-202205-1958

Trust: 4.75

Fetched: Nov. 27, 2022, 9:12 a.m., Published: Nov. 21, 2022, 2:17 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: trend model: endpoint sensor
vendor: trend model: password manager
vendor: trend model: antivirus
vendor: trend model: security
db: NVD ids: CVE-2022-30190

Google Patches the Seventh Zero-Day Chrome Vulnerability of 2022 | Spiceworks 1

Related entries in the VARIoT vulnerabilities database: VAR-202203-1921, VAR-202205-1370

Trust: 5.25

Fetched: Nov. 27, 2022, 9:11 a.m., Published: Nov. 2, 2022, midnight
 Vulnerabilities: buffer overflow, code execution
Affected productsExternal IDs
vendor: google model: chrome
vendor: google model: google chrome
db: NVD ids: CVE-2022-3723, CVE-2022-1096, CVE-2022-2856, CVE-2022-1364, CVE-2022-2294, CVE-2022-0609, CVE-2022-3075

Siemens LOGO! 8 BM Devices | CISA

Related entries in the VARIoT vulnerabilities database: VAR-202210-0505, VAR-202210-0503, VAR-202210-0504

Trust: 3.75

Fetched: Nov. 27, 2022, 9:10 a.m., Published: Nov. 8, 2022, midnight
 Vulnerabilities: improper validation
Affected productsExternal IDs
db: NVD ids: CVE-2022-36363, CVE-2022-36362, CVE-2022-36361

Google's Project Zero found exploitable vulnerabilities

Trust: 3.75

Fetched: Nov. 25, 2022, 9:33 a.m., Published: Nov. 24, 2022, 2:55 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
vendor: samsung model: android phone
db: NVD ids: CVE-2021-25370, CVE-2021-25369, CVE-2021-25337

What Vulnerability Management Software Is And What It Does - Iredell Humane

Trust: 3.0

Fetched: Nov. 25, 2022, 9:31 a.m., Published: Nov. 23, 2022, 7:06 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs

What Vulnerability Management Software Is And What It Does - Dogs n Sox

Trust: 3.0

Fetched: Nov. 25, 2022, 9:30 a.m., Published: Nov. 23, 2022, 6:54 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs

What Are The Benefits Of Using Vulnerability Management Software - BH Polo

Trust: 3.0

Fetched: Nov. 25, 2022, 9:29 a.m., Published: Nov. 23, 2022, 7:08 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs

Mali GPU driver vulnerability affects many devices - The Vocal Vixen

Trust: 4.0

Fetched: Nov. 25, 2022, 9:26 a.m., Published: Nov. 25, 2022, 12:32 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2022-33917

Patch Gap issues puts millions of Android devices to vulnerability | IT Security News

Trust: 3.75

Fetched: Nov. 25, 2022, 9:26 a.m., Published: Nov. 25, 2022, 5:37 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
vendor: google model: pixel
db: NVD ids: CVE-2021-28372

Cisco Patches 33 Vulnerabilities in Enterprise Firewall Products | SecurityWeek.Com

Related entries in the VARIoT vulnerabilities database: VAR-202211-1257, VAR-202211-0550

Trust: 4.5

Fetched: Nov. 25, 2022, 9:26 a.m., Published: Nov. 25, 2033, midnight
 Vulnerabilities: improper memory management, cross-site scripting, default credentials
Affected productsExternal IDs
vendor: citrix model: gateway
vendor: cisco model: firepower
vendor: cisco model: adaptive security appliance
vendor: cisco model: cisco adaptive security appliance
vendor: cisco model: series
vendor: cisco model: firepower management center
vendor: cisco model: firepower threat defense
db: NVD ids: CVE-2022-20946, CVE-2022-20927

Fortinet Confirms Zero-Day Vulnerability Exploited in One Attack | SecurityWeek.Com

Related entries in the VARIoT vulnerabilities database: VAR-202210-0198

Trust: 6.25

Fetched: Nov. 25, 2022, 9:24 a.m., Published: Nov. 25, 2022, midnight
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2022-40684

Rapid Vulnerability Detection overview | Security Command Center | Google Cloud

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566, VAR-202110-1691, VAR-202109-1802

Trust: 3.5

Fetched: Nov. 25, 2022, 9:22 a.m., Published: Nov. 19, 2022, midnight
 Vulnerabilities: file inclusion, local file inclusion, request forgery...
Affected productsExternal IDs
db: NVD ids: CVE-2020-14882, CVE-2021-25646, CVE-2021-22205, CVE-2020-14883, CVE-2021-44228, CVE-2021-26084, CVE-2021-35464, CVE-2021-41773, CVE-2020-14750, CVE-2021-40438, CVE-2021-43798, CVE-2021-41277

Understanding and Mitigating Russian State-Sponsored Cyber Threats to U.S. Critical Infrastructure | CISA

Related entries in the VARIoT vulnerabilities database: VAR-202008-0248

Trust: 4.5

Fetched: Nov. 25, 2022, 9:16 a.m., Published: March 1, 2022, midnight
 Vulnerabilities: code execution, password guessing
Affected productsExternal IDs
vendor: rising model: antivirus
db: NVD ids: CVE-2020-1472

BMC Firmware Vulnerabilities Expose OT, IoT Devices to Remote Attacks

Trust: 3.5

Fetched: Nov. 23, 2022, 10:02 a.m., Published: Nov. 22, 2022, midnight
 Vulnerabilities: access control issue, code execution, command injection
Affected productsExternal IDs
vendor: asus model: asus
vendor: asus model: bmc firmware
vendor: lenovo model: system

BMC Firmware Vulnerabilities Expose OT, IoT Devices to Remote Attacks | IT Security News

Trust: 3.0

Fetched: Nov. 23, 2022, 10:01 a.m., Published: Nov. 22, 2022, 5:37 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: lenovo model: system

Vulnerabilities in BMC Firmware Affect OT/IoT Device Security - Part 1 - Security Boulevard

Trust: 5.25

Fetched: Nov. 23, 2022, 10 a.m., Published: Nov. 22, 2022, 8:35 a.m.
 Vulnerabilities: session fixation, code execution, buffer overflow...
Affected productsExternal IDs
vendor: asus model: asus
vendor: asus model: bmc firmware
vendor: lenovo model: bios
vendor: lenovo model: system
vendor: lenovo model: bios firmware
vendor: dell model: bios
db: NVD ids: CVE-2021-26731, CVE-2021-26729, CVE-2021-26730, CVE-2021-4228, CVE-2021-44467, CVE-2021-45925, CVE-2021-26732, CVE-2021-26733, CVE-2021-44769, CVE-2021-26727, CVE-2021-26728, CVE-2021-44776, CVE-2021-46279

BMC Firmware Vulnerabilities Expose OT, IoT Devices to Remote Attacks | SecurityWeek.Com

Trust: 3.5

Fetched: Nov. 23, 2022, 9:59 a.m., Published: Nov. 23, 2022, midnight
 Vulnerabilities: access control issue, code execution, command injection
Affected productsExternal IDs
vendor: asus model: asus
vendor: asus model: bmc firmware
vendor: lenovo model: system

Vulnerabilities in BMC Firmware Affect OT/IoT Device Security - Part 1

Trust: 5.25

Fetched: Nov. 23, 2022, 9:57 a.m., Published: Nov. 22, 2022, 8:35 a.m.
 Vulnerabilities: session fixation, code execution, buffer overflow...
Affected productsExternal IDs
vendor: asus model: asus
vendor: asus model: bmc firmware
vendor: lenovo model: bios
vendor: lenovo model: system
vendor: lenovo model: bios firmware
vendor: dell model: bios
db: NVD ids: CVE-2021-26731, CVE-2021-26729, CVE-2021-26730, CVE-2021-4228, CVE-2021-44467, CVE-2021-45925, CVE-2021-26732, CVE-2021-26733, CVE-2021-44769, CVE-2021-26727, CVE-2021-26728, CVE-2021-44776, CVE-2021-46279