Sign-up

VARIoT news about IoT security

WAGO fixes config export flaw threatening data leak from industrial devices | The Daily Swig

Related entries in the VARIoT vulnerabilities database: VAR-202301-1424

Trust: 4.75

Fetched: Jan. 20, 2023, 9:11 a.m., Published: Jan. 18, 2023, 3:34 p.m.
 Vulnerabilities: command injection, path traversal
Affected productsExternal IDs
vendor: wago model: pfc200
vendor: wago model: series pfc100
vendor: wago model: pfc100
vendor: wago model: series
db: NVD ids: CVE-2022-3738

OpenSSL update patches high-severity vulnerabilities | Venafi

Trust: 4.5

Fetched: Jan. 20, 2023, 9:11 a.m., Published: Nov. 1, 2022, midnight
 Vulnerabilities: buffer overflow, code execution, denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2022-3786, CVE-2022-3602

A security vulnerability requiring immediate updates to your Apple devices (Dec 2022) - NUS Information Technology

Trust: 3.0

Fetched: Jan. 20, 2023, 9:10 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: watchos
vendor: apple model: ipad
vendor: apple model: safari
vendor: apple model: tvos
vendor: apple model: apple tv
vendor: apple model: ipad air
vendor: apple model: ipod touch
vendor: apple model: macos
vendor: apple model: watch

Rewterz Threat Advisory - ICS: Siemens Solid Edge Vulnerability | Rewterz

Trust: 6.25

Fetched: Jan. 18, 2023, 9:14 a.m., Published: Jan. 13, 2023, 3:14 p.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: siemens model: solid edge
db: NVD ids: CVE-2022-47967

Serious vulnerability InRouter firmware from InHand Networks threatens robots, electricity meters, med. devices etc. | Born's Tech and Windows World

Trust: 4.5

Fetched: Jan. 18, 2023, 9:14 a.m., Published: Jan. 17, 2023, 7:30 a.m.
 Vulnerabilities: code execution, command injection, os command injection...
Affected productsExternal IDs
db: NVD ids: CVE-2023-22598

The Top 10 Vulnerabilities of 2022: Mastering Vulnerability Management | Vulnerability Management

Related entries in the VARIoT vulnerabilities database: VAR-202205-1958, VAR-202205-0394

Trust: 5.25

Fetched: Jan. 18, 2023, 9:13 a.m., Published: Jan. 10, 2023, midnight
 Vulnerabilities: directory traversal, code execution, privilege escalation
Affected productsExternal IDs
vendor: google model: chrome
vendor: google model: google chrome
db: NVD ids: CVE-2022-30190, CVE-2022-1388, CVE-2022-0609, CVE-2022-27925

What is Vulnerability in Cyber Security With Example?

Trust: 3.5

Fetched: Jan. 18, 2023, 9:12 a.m., Published: Jan. 18, 9001, midnight
 Vulnerabilities: sql injection, brute force attack, weak password
Affected productsExternal IDs

"Mobile application vulnerabilities: The hidden threat to sensitive data and security” - Kratikal Blogs

Trust: 5.0

Fetched: Jan. 18, 2023, 9:12 a.m., Published: Jan. 17, 2023, 7:33 a.m.
 Vulnerabilities: information leakage
Affected productsExternal IDs
vendor: google model: android

What Is Vulnerability Management? - Security Boulevard

Trust: 3.0

Fetched: Jan. 18, 2023, 9:10 a.m., Published: Jan. 12, 2023, 6:58 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs

Cisco Webex Room Phone and Cisco Webex Share Link Layer Discovery Protocol Memory Leak Vulnerability

Trust: 4.75

Fetched: Jan. 18, 2023, 9:09 a.m., Published: Jan. 11, 2023, 3:47 p.m.
 Vulnerabilities: memory leak
Affected productsExternal IDs
vendor: cisco model: link layer discovery protocol
vendor: cisco model: webex
vendor: cisco model: cisco webex

Günter Born on Twitter: "Serious vulnerability InRouter firmware from InHand Networks threatens robots, electricity meters, med. devices etc. https://t.co/fWa87plT2T #IoT #Security Born's Tech and Windows World" / Twitter

Trust: 3.0

Fetched: Jan. 17, 2023, 9:20 a.m., Published: Jan. 17, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2023-22598

Attackers deploy sophisticated Linux implant on Fortinet network security devices | CSO Online

Related entries in the VARIoT vulnerabilities database: VAR-202212-1132

Trust: 4.75

Fetched: Jan. 17, 2023, 9:20 a.m., Published: Jan. 13, 2023, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2022-42475

CVE.report on Twitter: "CVE-2023-22411 : An Out-of-Bounds Write vulnerability in Flow Processing Daemon flowd of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause Denial of Service #DoS . On SRX Series devices using Unified... https://t.co/ODHkw06DeE" / Twitter

Trust: 4.25

Fetched: Jan. 17, 2023, 9:18 a.m., Published: Jan. 17, 2023, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2023-22411

Novel AI for better intel reports under development at IARPA | SC Media

Trust: 3.25

Fetched: Jan. 17, 2023, 9:18 a.m., Published: Jan. 11, 2023, 5:43 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: trend model: security

AMD has revealed a whole host of CPU security flaws

Trust: 3.0

Fetched: Jan. 17, 2023, 9:17 a.m., Published: Jan. 21, 2023, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs

Nintendo Switch Users Alerted to Severe Vulnerability in Games

Trust: 3.0

Fetched: Jan. 17, 2023, 9:17 a.m., Published: Jan. 17, 2023, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs

Rewterz Threat Advisory - ICS: Siemens S7-1500 CPU devices Vulnerability | Rewterz

Related entries in the VARIoT vulnerabilities database: VAR-202301-0605

Trust: 4.0

Fetched: Jan. 17, 2023, 9:14 a.m., Published: Jan. 13, 2023, 3:10 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: siemens model: solid edge
vendor: siemens model: s7-1500 cpu
db: NVD ids: CVE-2022-38773

Binarly Discloses Multiple Firmware Vulnerabilities in Qualcomm and Lenovo ARM-based Devices - ChannelBiz UK

Related entries in the VARIoT vulnerabilities database: VAR-202301-0521

Trust: 4.5

Fetched: Jan. 17, 2023, 9:13 a.m., Published: Jan. 9, 2023, 6:43 p.m.
 Vulnerabilities: buffer overflow, code execution, memory leak...
Affected productsExternal IDs
vendor: lenovo model: thinkpad
vendor: lenovo model: updates
vendor: lenovo model: system
db: NVD ids: CVE-2022-4434, CVE-2022-40520, CVE-2022-40518, CVE-2022-40519, CVE-2022-4435, CVE-2022-4433, CVE-2022-40516, CVE-2022-40517, CVE-2022-4432

Binarly Discloses Multiple Firmware Vulnerabilities in Qualcomm and Lenovo ARM-based Devices | Morningstar

Related entries in the VARIoT vulnerabilities database: VAR-202301-0521

Trust: 4.25

Fetched: Jan. 17, 2023, 9:13 a.m., Published: Jan. 9, 2023, 6:43 p.m.
 Vulnerabilities: buffer overflow, code execution, memory leak...
Affected productsExternal IDs
vendor: lenovo model: thinkpad
vendor: lenovo model: updates
vendor: lenovo model: system
db: NVD ids: CVE-2022-4434, CVE-2022-40520, CVE-2022-40518, CVE-2022-40519, CVE-2022-4435, CVE-2022-4433, CVE-2022-40516, CVE-2022-40517, CVE-2022-4432

AMD has revealed a whole host of CPU security flaws | TechRadar

Trust: 3.0

Fetched: Jan. 17, 2023, 9:12 a.m., Published: Jan. 16, 2023, 11:51 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs