Sign-up

VARIoT news about IoT security

150+ HP Printers Vulnerable to Bugs That Could Allow 'Full Control' | PCMag

Trust: 4.25

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 11, 2022, midnight
 Vulnerabilities: memory corruption
Affected productsExternal IDs
db: NVD ids: CVE-2021-39238, CVE-2021-39237

Log4j Vulnerability Guide | MassiveGRID

Trust: 3.0

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 21, 2021, 3:59 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs

Computer Vulnerability | Most Common Security Vulnerabilities

Trust: 4.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 19, 2021, 11:43 a.m.
 Vulnerabilities: path traversal, information disclosure, os command injection...
Affected productsExternal IDs
vendor: comodo model: antivirus
vendor: comodo model: firewall
vendor: comodo model: comodo firewall

Fudan professor found 400+ high-risk vulnerabilities: Google finally fixed it after 16 months | Android devices do not need to be "bricked" - SegmentFault 思否

Trust: 3.75

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 16, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2021-0934

iOS Devices Can Freeze, Crash Due to a HomeKit Vulnerability | Muhabarishaji News

Trust: 3.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 4, 2022, 9:12 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: icloud
vendor: apple model: iphone
vendor: apple model: macos
vendor: apple model: ipad

IOS Devices Can Freeze, Crash Due To A HomeKit Vulnerability | The Anand Market

Trust: 3.75

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 4, 2022, 9:12 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: macos
vendor: apple model: iphone
vendor: apple model: icloud

150+ HP Printers Vulnerable to Bugs That Could Allow 'Full Control'

Trust: 4.25

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Nov. 30, 2021, 6:11 p.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
db: NVD ids: CVE-2021-39238, CVE-2021-39237

The Types of Cyber Security Vulnerabilities

Trust: 3.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 27, 2021, midnight
 Vulnerabilities: path traversal, denial of service, buffer overflow...
Affected productsExternal IDs
vendor: trend model: security

iOS Devices Can Freeze, Crash Due to a HomeKit Vulnerability - BuytechNow.UK

Trust: 3.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 4, 2022, 9:21 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: macos
vendor: apple model: iphone
vendor: apple model: icloud

Log4J Vulnerability | News | Ricoh Australia

Related entries in the VARIoT vulnerabilities database: VAR-202112-1782, VAR-202112-0566, VAR-202112-0562

Trust: 4.0

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 1, 2022, midnight
 Vulnerabilities: denial of service, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-45105, CVE-2021-44228, CVE-2021-45046

Dell Releases Patch for BIOS Flaws That Put Over 30 Million Devices at Risk of Remote Attacks | Technology News

Trust: 3.75

Fetched: Jan. 4, 2022, 1:51 p.m., Published: June 25, 2021, 7:22 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios
vendor: dell model: optiplex
vendor: dell model: latitude
db: NVD ids: CVE-2021-21574, CVE-2021-21571, CVE-2021-21573, CVE-2021-21572

VU#941987 - Apple devices vulnerable to arbitrary code execution in SecureROM

Trust: 4.0

Fetched: Jan. 4, 2022, 1:51 p.m., Published: -
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: watch
vendor: apple model: ipad
vendor: apple model: iphone
vendor: apple model: apple tv
vendor: apple model: ipod touch

MANGA aka Dark Mirai-based Campaign Targets New TP-Link Router RCE Vulnerability | FortiGuard Labs

Related entries in the VARIoT vulnerabilities database: VAR-202111-0616

Trust: 4.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 8, 2021, 8 a.m.
 Vulnerabilities: denial of service, default credentials
Affected productsExternal IDs
vendor: tp-link model: wr840n
vendor: tp-link model: tl-wr840n
vendor: tp-link model: routers
db: NVD ids: CVE-2021-41653

An Apple HomeKit bug can send iOS devices into a death spiral - The Verge

Trust: 3.75

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 3, 2022, 6:09 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: macos
vendor: apple model: icloud

Cassia IoT Access Controller OT Cloud Vulnerability found by Team82

Trust: 3.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 8, 2021, 3:42 p.m.
 Vulnerabilities: directory traversal, path traversal
Affected productsExternal IDs
db: NVD ids: CVE-2021-22685

Patched GIF Processing Vuln Still Affects Mobile Apps

Trust: 5.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: -
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: google model: android
vendor: trend micro model: security
vendor: trend model: security
db: NVD ids: CVE-2019-11932

Citrix Security Advisory for CVE-2021-44228, CVE-2021-45046, CVE-2021-45105 and CVE-2021-44832.

Related entries in the VARIoT vulnerabilities database: VAR-202112-2011, VAR-202112-1782, VAR-202112-0566, VAR-202112-0562

Trust: 5.0

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 10, 2021, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: citrix model: gateway
vendor: citrix model: xenserver
vendor: citrix model: license server
vendor: citrix model: citrix license server
vendor: citrix model: xenmobile server
vendor: citrix model: netscaler gateway
vendor: citrix model: netscaler adc
vendor: citrix model: netscaler
vendor: citrix model: hypervisor
db: NVD ids: CVE-2021-44832, CVE-2021-45105, CVE-2021-44228, CVE-2021-45046

iOS Devices Can Freeze, Crash Due to a HomeKit Vulnerability | Technology News

Trust: 3.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 4, 2022, 9:12 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: macos
vendor: apple model: iphone
vendor: apple model: icloud

Aviso de segurança - Vulnerabilidade de divulgação de informações em alguns produtos Huawei

Related entries in the VARIoT vulnerabilities database: VAR-202112-0646

Trust: 4.0

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 8, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: huawei model: huawei
db: NVD ids: CVE-2021-40007

Kryptowire Collaborates with Orange and Uncovers Major Vulnerabilities in

Trust: 3.0

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 14, 2021, 2:10 p.m.
 Vulnerabilities: command execution
Affected productsExternal IDs