VARIoT news about IoT security

Related entries in the VARIoT vulnerabilities database: VAR-202111-0609, VAR-202111-0579

Trust: 4.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Nov. 2, 2021, 4:48 p.m.
Vulnerabilities: buffer overflow, use after free, code execution
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2021-1975, CVE-2021-1924, CVE-2021-1048, CVE-2021-0930, CVE-2021-0889, CVE-2021-0918, CVE-2021-0913
Related entries in the VARIoT vulnerabilities database: VAR-202108-0311

Trust: 5.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 9, 2022, midnight
Vulnerabilities: denial of service, improper access control, file upload issue...
Affected productsExternal IDs
vendor: cisco model: firepower
vendor: cisco model: nexus 9000 series
vendor: cisco model: device manager
vendor: cisco model: nx-os software
vendor: cisco model: nx-os
vendor: cisco model: routers
vendor: cisco model: nexus
vendor: cisco model: nexus 9000
vendor: cisco model: series
vendor: cisco model: application policy infrastructure controller
vendor: blackberry model: blackberry
db: NVD ids: CVE-2021-1577
Related entries in the VARIoT vulnerabilities database: VAR-202110-1394, VAR-202110-1352

Trust: 4.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 16, 2022, midnight
Vulnerabilities: directory traversal, denial of service, traversal attack...
Affected productsExternal IDs
vendor: cisco model: ios xr
vendor: cisco model: ios xe
vendor: cisco model: firepower threat defense
vendor: cisco model: firepower
vendor: cisco model: adaptive security appliance
vendor: cisco model: ios xe software
vendor: cisco model: firepower management center
vendor: snort model: snort
db: NVD ids: CVE-2021-34783, CVE-2021-40116

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 11, 2022, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: optiplex
vendor: asus model: asus
db: NVD ids: CVE-2021-28139
Related entries in the VARIoT vulnerabilities database: VAR-202109-0245

Trust: 5.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Jan. 16, 2022, midnight
Vulnerabilities: denial of service, buffer overflow, code execution
Affected productsExternal IDs
vendor: cisco model: catalyst 9800
vendor: cisco model: ios xe software
vendor: cisco model: sd-wan
vendor: cisco model: series integrated services routers
vendor: cisco model: cloud services router
vendor: cisco model: cloud services router 1000v
vendor: cisco model: integrated services routers
vendor: cisco model: routers
vendor: cisco model: ios xe
vendor: cisco model: catalyst
vendor: cisco model: 1000v
vendor: cisco model: series switches
vendor: cisco model: router
vendor: cisco model: access points
vendor: cisco model: series
db: NVD ids: CVE-2021-34770, CVE-2021-1619, CVE-2021-34727
Related entries in the VARIoT vulnerabilities database: VAR-202109-1642

Trust: 5.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 8, 2021, midnight
Vulnerabilities: authorization vulnerability, code execution
Affected productsExternal IDs
vendor: huawei model: huawei
db: NVD ids: CVE-2021-37101

Trust: 3.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 19, 2021, 9:07 a.m.
Vulnerabilities: -
Affected productsExternal IDs
vendor: samsung model: samsung
vendor: samsung model: mobile
vendor: google model: home

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 24, 2021, 8:35 a.m.
Vulnerabilities: privilege escalation, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-22005
Related entries in the VARIoT vulnerabilities database: VAR-202108-2056

Trust: 4.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Nov. 1, 2021, 1:17 p.m.
Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: macos
vendor: apple model: iphone
db: NVD ids: CVE-2021-30892

Trust: 3.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 19, 2021, midnight
Vulnerabilities: -
Affected productsExternal IDs

Trust: 3.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 16, 2021, 3:19 p.m.
Vulnerabilities: memory corruption, command injection
Affected productsExternal IDs
vendor: asus model: asus
vendor: realtek model: sdk
vendor: realtek model: realtek sdk

Trust: 3.25

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 20, 2021, 1:16 p.m.
Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-26333
Related entries in the VARIoT vulnerabilities database: VAR-202108-1005

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 29, 2021, 3:33 p.m.
Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: trend model: security
vendor: trend micro model: security
db: NVD ids: CVE-2021-34484

Trust: 4.25

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 18, 2021, 10:06 a.m.
Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-28372

Trust: 3.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 7, 2021, 11:17 a.m.
Vulnerabilities: denial of service, path traversal, code execution
Affected productsExternal IDs
vendor: honeywell model: experion process knowledge system
vendor: honeywell model: honeywell experion process knowledge system
vendor: honeywell model: experion

Trust: 4.25

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 18, 2021, 3:20 p.m.
Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-28372

Trust: 3.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 18, 2021, 4:39 p.m.
Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-28372

Trust: 3.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 13, 2021, midnight
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: iphone
Related entries in the VARIoT vulnerabilities database: VAR-202109-1909

Trust: 4.25

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 8, 2021, 2:27 p.m.
Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-40444
Related entries in the VARIoT vulnerabilities database: VAR-202104-0768

Trust: 4.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 24, 2021, 1:36 p.m.
Vulnerabilities: denial of service, command injection
Affected productsExternal IDs
vendor: orange model: web server
vendor: huawei model: huawei
vendor: belkin model: router
vendor: asustek model: asus
vendor: asustek model: router
vendor: asus model: asus
vendor: asus model: router
vendor: d-link model: router
vendor: realtek model: realtek sdk
vendor: buffalo model: router
vendor: netgear model: router
db: NVD ids: CVE-2021-35395, CVE-2021-20090