VARIoT latest news about IoT security

Vulnerability (computing) - Wikipedia Trust: 3.25 Fetched: Jan. 18, 2022, 11:53 a.m., Published: April 3, 2021, midnight	Vulnerabilities: sql injection, buffer overflow

Affected products

External IDs

vendor:	tippingpoint	model:	tippingpoint
vendor:	google	model:	home
vendor:	gale	model:	gale

Research finds some medical devices vulnerable to hackers Trust: 3.0 Fetched: Jan. 18, 2022, 11:53 a.m., Published: Jan. 12, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

siemens

model:

nucleus

Research finds some medical devices vulnerable to hackers Trust: 3.0 Fetched: Jan. 18, 2022, 11:53 a.m., Published: Jan. 12, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

siemens

model:

nucleus

Research finds some medical devices vulnerable to hackers Trust: 3.0 Fetched: Jan. 18, 2022, 11:53 a.m., Published: Jan. 12, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

siemens

model:

nucleus

Research finds some medical devices vulnerable to hackers Trust: 3.0 Fetched: Jan. 18, 2022, 11:53 a.m., Published: Sept. 18, 2021, 10:06 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

siemens

model:

nucleus

NVD - CVE-2020-10627 Trust: 4.0 Fetched: Jan. 18, 2022, 11:52 a.m., Published: Jan. 13, 2022, midnight	Vulnerabilities: improper access control

Affected products

External IDs

db:

NVD

ids:

CVE-2020-10627

Blacksmith - Computer Security Group Trust: 3.5 Fetched: Jan. 18, 2022, 11:52 a.m., Published: Jan. 8, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	samsung	model:	samsung
vendor:	dram	model:	dram

db:

NVD

ids:

CVE-2021-42114

Research finds some medical devices vulnerable to hackers Trust: 3.0 Fetched: Jan. 18, 2022, 11:52 a.m., Published: Jan. 12, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

siemens

model:

nucleus

Cisco Firewall Vulnerabilities Enable Denial of Service Related entries in the VARIoT vulnerabilities database: VAR-202110-1796, VAR-202109-0622 Trust: 5.5 Fetched: Jan. 18, 2022, 11:52 a.m., Published: Aug. 27, 2021, midnight	Vulnerabilities: denial of service, authentication bypass, buffer overflow...

Affected products

External IDs

vendor:	cisco	model:	firepower
vendor:	cisco	model:	adaptive security appliance
vendor:	cisco	model:	firepower threat defense
vendor:	cisco	model:	advanced malware protection

db:

NVD

ids:

CVE-2021-34704, CVE-2021-34746

Millions of Android Devices Exposed to Eavesdropping - Bestgamingpro Trust: 3.0 Fetched: Jan. 18, 2022, 11:51 a.m., Published: Jan. 27, 2021, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

check point

model:

check point

Medical Devices Pose Security Risks to Healthcare Organizations Trust: 3.0 Fetched: Jan. 18, 2022, 11:50 a.m., Published: Aug. 18, 2021, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

gale

model:

gale

Moxa Devices Prone to Vulnerabilities Affecting Railways Related entries in the VARIoT vulnerabilities database: VAR-201501-0737, VAR-201602-0004, VAR-202109-1171, VAR-201804-0468, VAR-202109-1172 Trust: 5.5 Fetched: Jan. 18, 2022, 11:50 a.m., Published: Oct. 25, 2021, midnight	Vulnerabilities: cross-site scripting, command injection, buffer overflow...

Affected products

External IDs

vendor:	moxa	model:	oncell g3470a-lte-eu-t
vendor:	moxa	model:	wac-1001
vendor:	moxa	model:	wac-1001 series
vendor:	moxa	model:	wac-2004
vendor:	moxa	model:	wac-2004 series
vendor:	moxa	model:	moxa
vendor:	moxa	model:	oncell g3470a-lte-eu
vendor:	moxa inc	model:	oncell g3470a-lte-eu-t
vendor:	moxa inc	model:	wac-1001
vendor:	moxa inc	model:	wac-1001 series
vendor:	moxa inc	model:	wac-2004
vendor:	moxa inc	model:	wac-2004 series
vendor:	moxa inc	model:	moxa
vendor:	moxa inc	model:	oncell g3470a-lte-eu
vendor:	cisco	model:	series
vendor:	cisco	model:	access points
vendor:	cisco	model:	router

db:

NVD

ids:

CVE-2015-0235, CVE-2015-7547, CVE-2021-39278, CVE-2016-8717, CVE-2021-39279, CVE-2013-1914, CVE-2013-7423

Hiding Vulnerabilities in Source Code - Schneier on Security Trust: 3.0 Fetched: Jan. 18, 2022, 11:49 a.m., Published: Oct. 12, 2021, midnight	Vulnerabilities: -

Affected products

External IDs

db:

NVD

ids:

CVE-2021-42574, CVE-2021-42694

Product Security \| Axis Communications Trust: 3.75 Fetched: Jan. 18, 2022, 11:49 a.m., Published: Jan. 18, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	axis communications	model:	axis
vendor:	axis communications	model:	communications
vendor:	axis	model:	axis
vendor:	axis	model:	communications

db:

NVD

ids:

CVE-2021-31986, CVE-2021-31987, CVE-2021-31988

BlackBerry Finally Announces BadAlloc Vulnerability in QNX Devices Trust: 4.75 Fetched: Jan. 18, 2022, 11:49 a.m., Published: Jan. 18, 2022, midnight	Vulnerabilities: memory allocation vulnerability, denial of service

Affected products

External IDs

vendor:

blackberry

model:

blackberry

MediaTek users beware: Millions of devices are at risk! - Fonexcode Trust: 3.0 Fetched: Jan. 18, 2022, 11:49 a.m., Published: Jan. 16, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

check point

model:

check point

Research finds some medical devices vulnerable to hackers Trust: 3.0 Fetched: Jan. 18, 2022, 11:49 a.m., Published: Jan. 12, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

siemens

model:

nucleus

Research finds some medical devices vulnerable to hackers Trust: 3.0 Fetched: Jan. 18, 2022, 11:49 a.m., Published: Jan. 12, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

siemens

model:

nucleus

NVD - CVE-2021-44228 Related entries in the VARIoT vulnerabilities database: VAR-202112-0566 Trust: 3.75 Fetched: Jan. 18, 2022, 11:49 a.m., Published: Jan. 12, 2022, 1:15 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	cisco	model:	prime_service_catalog
vendor:	cisco	model:	virtual_topology_system
vendor:	cisco	model:	unified_contact_center_enterprise
vendor:	cisco	model:	finesse
vendor:	cisco	model:	unified_communications_manager_im_and_presence_service
vendor:	cisco	model:	unified_contact_center_express
vendor:	cisco	model:	evolved_programmable_network_manager
vendor:	cisco	model:	fog_director
vendor:	cisco	model:	unity_connection
vendor:	cisco	model:	unified_customer_voice_portal
vendor:	cisco	model:	webex_meetings_server
vendor:	cisco	model:	unified_communications_manager
vendor:	cisco	model:	sd-wan_vmanage
vendor:	cisco	model:	ucs_director
vendor:	cisco	model:	identity_services_engine
vendor:	cisco	model:	virtualized_voice_browser
vendor:	cisco	model:	data_center_network_manager
vendor:	cisco	model:	emergency_responder
vendor:	cisco	model:	video_surveillance_operations_manager
vendor:	cisco	model:	integrated_management_controller_supervisor
vendor:	cisco	model:	connected_mobile_experiences

db:

NVD

ids:

CVE-2021-44228

Research finds some medical devices vulnerable to hackers Trust: 3.0 Fetched: Jan. 18, 2022, 11:48 a.m., Published: Jan. 12, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

siemens

model:

nucleus

VARIoT news about IoT security