Sign-up

VARIoT news about IoT security

What to know about Vulnerability Scanners and Scanning Tools | Balbix

Trust: [3.0, []]

Fetched: May 13, 2022, 10:50 a.m., Published: Nov. 27, 2019, 4:31 p.m.
 Vulnerabilities: -
Affected productsExternal IDs

These new vulnerabilities put millions of IoT devices at risk, so patch now | ZDNet

Trust: [3.75, []]

Fetched: May 13, 2022, 10:50 a.m., Published: April 5, 2022, midnight
 Vulnerabilities: denial of service, code execution
Affected productsExternal IDs

Vulnerabilities in remote management agent impacts thousands of medical devices - ARN

Trust: [3.5, []]

Fetched: May 13, 2022, 10:50 a.m., Published: April 8, 2022, midnight
 Vulnerabilities: information leak, code execution, directory traversal...
Affected productsExternal IDs
db: NVD ids: CVE-2022-25252, CVE-2022-25248, CVE-2022-25247, CVE-2022-25246, CVE-2022-25249, CVE-2022-25251, CVE-2022-25250

DSA-2019-039: Dell Wyse Device Agent Buffer Overflow Vulnerability | Dell Polska

Related entries in the VARIoT vulnerabilities database: VAR-201903-0148

Trust: [5.0, []]

Fetched: May 13, 2022, 10:50 a.m., Published: May 7, 2022, midnight
 Vulnerabilities: buffer overflow
Affected productsExternal IDs
db: NVD ids: CVE-2019-3712

HP Device Manager vulnerabilities may allow full system takeover - Help Net Security

Trust: [5.0, []]

Fetched: May 13, 2022, 10:50 a.m., Published: Oct. 7, 2020, 12:52 p.m.
 Vulnerabilities: command execution, privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2020-6926, CVE-2020-6927, CVE-2020-6925

FDA informs patients, providers and manufacturers about potential cybersecurity vulnerabilities for connected medical devices and health care networks that use certain communication software | FDA

Trust: [3.75, []]

Fetched: May 13, 2022, 10:50 a.m., Published: Oct. 1, 2019, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs

Microsoft January 2022 Patch Tuesday Fixes 97 Vulnerabilities, Six Zero-Day

Related entries in the VARIoT vulnerabilities database: VAR-202201-0640, VAR-202107-1503, VAR-202109-1789

Trust: [3.75, []]

Fetched: May 13, 2022, 10:50 a.m., Published: Feb. 10, 2022, 9:35 p.m.
 Vulnerabilities: denial of service, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2022-21919, CVE-2021-36976, CVE-2022-21874, CVE-2021-22947, CVE-2022-21836, CVE-2022-21839

Sophos Firewall Remote Code Execution Vulnerability: What You Need to Know - Security Boulevard

Trust: [5.0, []]

Fetched: May 13, 2022, 10:50 a.m., Published: March 28, 2022, 7:17 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2022-1040

DistroWatch.com: Damn Vulnerable Linux

Trust: [4.0, []]

Fetched: May 13, 2022, 10:50 a.m., Published: April 1, 2022, midnight
 Vulnerabilities: sql injection
Affected productsExternal IDs

New Supply Chain Vulnerabilities Impact Medical and IoT Devices - Security Boulevard

Trust: [3.5, []]

Fetched: May 13, 2022, 10:50 a.m., Published: March 8, 2022, 5:10 a.m.
 Vulnerabilities: directory traversal, information disclosure, buffer overflow...
Affected productsExternal IDs
db: NVD ids: CVE-2022-25252, CVE-2022-25248, CVE-2022-25247, CVE-2022-25249, CVE-2022-25246, CVE-2022-25251, CVE-2022-25250

Medical and IoT devices from more than 100 vendors vulnerable to attack - Urgent Comms

Trust: [3.0, []]

Fetched: May 13, 2022, 10:50 a.m., Published: March 10, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs

Web Application Vulnerabilities: Most Common Types To Beware | Benzinga

Trust: [3.5, []]

Fetched: May 13, 2022, 10:50 a.m., Published: March 5, 2022, midnight
 Vulnerabilities: cross-site request forgery, cross-site scripting, request forgery...
Affected productsExternal IDs

Spring4Shell (CVE-2022-22965): Are you vulnerable to this Zero Day?

Related entries in the VARIoT vulnerabilities database: VAR-202203-1506

Trust: [3.75, []]

Fetched: May 13, 2022, 10:50 a.m., Published: March 31, 2022, midnight
 Vulnerabilities: code injection
Affected productsExternal IDs
db: NVD ids: CVE-2022-22963, CVE-2010-1622, CVE-2022-22965

Vulners - Johnson Controls Metasys

Trust: [4.75, []]

Fetched: May 13, 2022, 10:50 a.m., Published: April 5, 2022, midnight
 Vulnerabilities: request forgery
Affected productsExternal IDs
db: NVD ids: CVE-2021-36202

Russia-backed Hackers Bypassed MFA, Exploited Print Vulnerability - MSSP Alert

Related entries in the VARIoT vulnerabilities database: VAR-202107-1010

Trust: [4.0, []]

Fetched: May 13, 2022, 10:50 a.m., Published: March 23, 2022, 8:07 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-34527

Dahua Broken Access Control Vulnerability

Trust: [3.0, []]

Fetched: May 13, 2022, 10:50 a.m., Published: Jan. 25, 2022, 3:53 p.m.
 Vulnerabilities: access control vulnerability
Affected productsExternal IDs

New TCG guidance simplifies creating cyber resilient devices - Global Security Mag Online

Trust: [3.0, []]

Fetched: May 13, 2022, 10:50 a.m., Published: April 7, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs

Protecting patients by securing medical devices and the Internet of Medical Things (IoMT) | AT&T Cybersecurity

Trust: [4.75, []]

Fetched: May 13, 2022, 10:50 a.m., Published: April 2, 2022, midnight
 Vulnerabilities: default credentials
Affected productsExternal IDs

Critical Vulnerabilities In APC Smart-UPS Devices

Related entries in the VARIoT vulnerabilities database: VAR-202203-0236, VAR-202203-0237, VAR-202203-0235

Trust: [5.75, []]

Fetched: May 13, 2022, 10:50 a.m., Published: March 11, 2022, 6:21 a.m.
 Vulnerabilities: memory corruption, authentication bypass, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2022-22806, CVE-2022-22805, CVE-2022-0715

Log4j vulnerability explained: Zero-day attacks and how to contain them - Infosec Resources

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: [3.75, []]

Fetched: May 13, 2022, 10:50 a.m., Published: Feb. 23, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228