Sign-up

VARIoT news about IoT security

eSentire | Polkit Vulnerability Impacting Linux Devices

Trust: 4.25

Fetched: May 13, 2022, 8:01 a.m., Published: May 4, 2022, midnight
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2021-4034

Apple update patches serious Safari vulnerability that exposes user data - SiliconANGLE

Trust: 3.75

Fetched: May 13, 2022, 8:01 a.m., Published: Jan. 26, 2022, 8:41 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: webkit
vendor: apple model: safari
vendor: apple model: icloud
vendor: apple model: watch
vendor: apple model: watchos

Novel phishing campaign highlights need for MFA, says Microsoft

Trust: 4.0

Fetched: May 13, 2022, 8:01 a.m., Published: Jan. 27, 2022, 2:45 p.m.
 Vulnerabilities: default password
Affected productsExternal IDs

Millions of Google, Roku, and Sonos Devices Are Vulnerable to a Web Attack | WIRED

Trust: 4.75

Fetched: May 13, 2022, 8:01 a.m., Published: June 19, 2018, 4:51 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: roku model: roku
vendor: sonos model: sonos
vendor: google model: google home
vendor: google model: home
vendor: google model: chromecast

Millions of Routers, IoT Devices at Risk as Malware Source Code Surfaces on GitHub

Related entries in the VARIoT vulnerabilities database: VAR-201403-0306, VAR-201704-0303, VAR-201502-0201

Trust: 3.75

Fetched: May 13, 2022, 8:01 a.m., Published: June 23, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: d-link model: multiple routers
vendor: netgear model: multiple routers
db: NVD ids: CVE-2014-2321, CVE-2016-1555, CVE-2015-2051, CVE-2013-3307

Critical MediaTek rootkit affects millions of Android devices

Related entries in the VARIoT vulnerabilities database: VAR-202003-0573

Trust: 3.5

Fetched: May 13, 2022, 8:01 a.m., Published: March 2, 2020, 1:25 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: trendmicro model: security
vendor: mediatek model: mt8163
vendor: samsung model: notes
vendor: amazon model: fire tv
vendor: nokia model: series
vendor: huawei model: honor
vendor: huawei model: huawei
vendor: google model: android
vendor: google model: android one
vendor: google model: home
db: NVD ids: CVE-2020-0069

Apache MS-DOS Device Name Vulnerability - Threat Encyclopedia - Trend Micro NO

Trust: 3.25

Fetched: May 13, 2022, 8:01 a.m., Published: May 13, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2003-0016

'DoorLock' Vulnerability Can Force iOS Devices to Endlessly Reboot

Trust: 3.75

Fetched: May 13, 2022, 8:01 a.m., Published: May 11, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: ipad
vendor: apple model: icloud

TALOS-2022-1445 || Cisco Talos Intelligence Group - Comprehensive Threat Intelligence

Trust: 3.75

Fetched: May 13, 2022, 8:01 a.m., Published: Jan. 26, 2022, midnight
 Vulnerabilities: buffer overflow
Affected productsExternal IDs
vendor: reolink model: rlc-410w

New Vulnerability Could Put IoT Devices at Risk

Trust: 3.75

Fetched: May 13, 2022, 8:01 a.m., Published: Aug. 19, 2020, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2020-15858

A new update from Apple to fix a serious security vulnerability on its devices

Trust: 3.75

Fetched: May 13, 2022, 8:01 a.m., Published: May 24, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: huawei model: huawei
vendor: apple model: ipad
vendor: apple model: safari
vendor: apple model: ipod touch
vendor: apple model: watch
vendor: apple model: iphone
vendor: apple model: ipad air
vendor: apple model: macos

Mobile vulnerabilities: What they are and how they impact the enterprise

Trust: 3.0

Fetched: May 13, 2022, 8:01 a.m., Published: Oct. 17, 2017, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

(PDF) Assessing medical device vulnerabilities on the Internet of Things

Trust: 4.75

Fetched: May 13, 2022, 8:01 a.m., Published: July 13, 2017, midnight
 Vulnerabilities: default credentials
Affected productsExternal IDs
vendor: proftpd model: proftpd
vendor: dropbear model: dropbear ssh
vendor: dropbear model: ssh server

Раскрытие важны данных в Cisco Adaptive Security Device Manager

Trust: 3.0

Fetched: May 13, 2022, 8:01 a.m., Published: Jan. 24, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: device manager
vendor: cisco model: security device manager
vendor: cisco model: adaptive security device manager

The log4shell vulnerability - What to know - Stratodesk NoTouch | VDI, Thin Client, DaaS, IoT

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566, VAR-202112-1782, VAR-202112-0562

Trust: 5.25

Fetched: May 13, 2022, 8:01 a.m., Published: Dec. 11, 2021, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228, CVE-2021-45105, CVE-2021-45046

Medical Devices Increasingly Vulnerable to Cyberattacks - In Compliance Magazine

Trust: 3.25

Fetched: May 13, 2022, 8:01 a.m., Published: May 13, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs

iOS Devices Can Freeze, Crash Due to a HomeKit Vulnerability - MeHaou

Trust: 3.5

Fetched: May 13, 2022, 8 a.m., Published: Jan. 28, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: ipad
vendor: apple model: macos
vendor: apple model: icloud

Mobile vulnerabilities: What they are and how they impact the enterprise

Trust: 3.0

Fetched: May 13, 2022, 8 a.m., Published: Oct. 17, 2017, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Over 50% Internet-connected Devices In Hospitals Vulnerable To Cybercrime: Report #hospitals #vulnerable - Cybercrime Cybersecurity Ransomware Washington Windows-TeluguStop

Trust: 3.0

Fetched: May 13, 2022, 8 a.m., Published: Jan. 20, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs

Linux PwnKit Vulnerability Affects Most XIoT Devices

Trust: 3.75

Fetched: May 13, 2022, 8 a.m., Published: Jan. 27, 2022, midnight
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2021-4034