Sign-up

VARIoT news about IoT security

Cisco : Security vulnerabilities

Related entries in the VARIoT vulnerabilities database: VAR-202110-0212, VAR-202110-1376, VAR-202110-1375, VAR-202110-0622, VAR-202110-1298, VAR-202111-0418, VAR-202111-0412, VAR-202109-0617, VAR-202110-1065, VAR-202109-0622, VAR-202110-0583, VAR-202110-1366, VAR-202110-0211, VAR-202111-0413, VAR-202110-0618, VAR-202110-1402, VAR-202110-1350, VAR-202109-0631, VAR-202110-1354, VAR-202109-0624, VAR-202110-0619, VAR-202110-0213, VAR-202111-0393, VAR-202110-1351, VAR-202110-0207, VAR-202110-1367, VAR-202110-1352, VAR-202110-0617, VAR-202110-1392, VAR-202111-0400, VAR-202110-0582, VAR-202111-0419, VAR-202109-0623, VAR-202110-1297, VAR-202110-1394, VAR-202111-0664, VAR-202108-0824, VAR-202110-1353, VAR-202108-0823, VAR-202109-0618, VAR-202110-0203, VAR-202110-0209, VAR-202110-1305, VAR-202110-0623, VAR-202111-0417, VAR-202110-1395, VAR-202110-1286, VAR-202111-0401, VAR-202110-1393, VAR-202110-1377

Trust: 5.25

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 2, 2021, midnight
 Vulnerabilities: cross-site request forgery, denial of service, cross-site scripting...
Affected productsExternal IDs
vendor: mesh model: mesh
vendor: cisco model: cisco evolved programmable network manager
vendor: cisco model: cisco identity services engine
vendor: cisco model: identity services engine
vendor: cisco model: cisco roomos
vendor: cisco model: dna center
vendor: cisco model: meeting
vendor: cisco model: cisco meeting server
vendor: cisco model: small business rv series routers
vendor: cisco model: series routers
vendor: cisco model: cisco anyconnect secure mobility client
vendor: cisco model: firepower
vendor: cisco model: cisco prime infrastructure
vendor: cisco model: common services platform collector
vendor: cisco model: cisco ios xr
vendor: cisco model: webex video mesh
vendor: cisco model: telepresence collaboration endpoint
vendor: cisco model: webex meetings
vendor: cisco model: cisco firepower management center
vendor: cisco model: evolved programmable network manager
vendor: cisco model: cisco telepresence management suite
vendor: cisco model: roomos
vendor: cisco model: cisco meeting
vendor: cisco model: cisco web security appliance
vendor: cisco model: prime infrastructure
vendor: cisco model: telepresence management suite
vendor: cisco model: unified communications manager
vendor: cisco model: meeting server
vendor: cisco model: link layer discovery protocol
vendor: cisco model: web security appliance
vendor: cisco model: anyconnect secure mobility client
vendor: cisco model: cisco ios
vendor: cisco model: firepower threat defense
vendor: cisco model: routers
vendor: cisco model: firepower management center
vendor: cisco model: ios xr software
vendor: cisco model: umbrella
vendor: cisco model: adaptive security appliance
vendor: cisco model: webex
vendor: cisco model: small business
vendor: cisco model: unified communications
vendor: cisco model: telepresence
vendor: cisco model: small business rv
vendor: cisco model: cisco small business
vendor: cisco model: cisco telepresence
vendor: cisco model: unified communications manager session management edition
vendor: cisco model: series
vendor: cisco model: nexus
vendor: cisco model: cisco webex
vendor: cisco model: ios xr
vendor: cisco model: cisco adaptive security appliance
vendor: cisco model: cisco unified communications manager
vendor: cisco model: cisco webex meetings
vendor: snort model: snort
db: NVD ids: CVE-2021-34766, CVE-2021-34793, CVE-2021-34794, CVE-2021-34789, CVE-2021-34755, CVE-2021-34774, CVE-2021-40124, CVE-2021-34785, CVE-2021-34762, CVE-2021-34746, CVE-2021-34738, CVE-2021-34764, CVE-2021-34758, CVE-2021-40120, CVE-2021-40122, CVE-2021-40125, CVE-2021-40118, CVE-2021-34771, CVE-2021-34787, CVE-2021-34765, CVE-2021-40121, CVE-2021-34772, CVE-2021-40126, CVE-2021-40117, CVE-2021-34742, CVE-2021-34763, CVE-2021-40116, CVE-2021-40123, CVE-2021-34791, CVE-2021-40128, CVE-2009-1234, CVE-2021-34743, CVE-2021-34773, CVE-2021-34759, CVE-2021-34756, CVE-2021-34783, CVE-2021-40119, CVE-2021-34749, CVE-2021-40114, CVE-2021-34745, CVE-2021-34786, CVE-2021-34782, CVE-2021-34748, CVE-2021-34761, CVE-2021-34760, CVE-2021-34784, CVE-2021-34781, CVE-2021-34754, CVE-2021-40115, CVE-2021-34790, CVE-2021-34792

Seventh Inferno vulnerability (some NETGEAR smart switches) - gynvael.coldwind//vx.log

Related entries in the VARIoT vulnerabilities database: VAR-202109-1135

Trust: 4.25

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 16, 2021, midnight
 Vulnerabilities: denial of service, code execution, kernel panic
Affected productsExternal IDs
vendor: netgear model: gs728tpv2
vendor: netgear model: gs752tpp
vendor: netgear model: gs728tppv2
vendor: netgear model: gs752tpv2
vendor: netgear model: gs750e
vendor: netgear model: gs724tpv2
vendor: lighttpd model: lighttpd
vendor: google model: chrome
vendor: google model: home
vendor: serve model: serve
db: NVD ids: CVE-2021-41314

BrakTooth Bluetooth vulnerability exposes millions of Windows and Android devices - MSPoweruser

Trust: 4.0

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Sept. 6, 2021, 10:01 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: optiplex
db: NVD ids: CVE-2021-28139

HP Analyzes Zero Day Remote Code Execution Vulnerability - MSSP Alert

Trust: 5.0

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Oct. 18, 2021, 7 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-404441

Apple releases updates to all iOS/iPad devices to fix security vulnerabilities

Related entries in the VARIoT vulnerabilities database: VAR-202108-2172, VAR-202108-1057

Trust: 3.75

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Sept. 14, 2021, 2:09 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: ipad
db: NVD ids: CVE-2021-30858, CVE-2021-30860

Critical vulnerabilities expose Cisco equipment to hijacking attacks | Usa science news

Trust: 5.75

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Dec. 16, 2021, 10:49 p.m.
 Vulnerabilities: injection attack, command injection
Affected productsExternal IDs
vendor: cisco model: series
vendor: cisco model: catalyst
vendor: cisco model: series switches
db: NVD ids: CVE-2021-40113, CVE-2021-34795

Exploitable Vulnerabilities Affect ZTE MF971R Router

Related entries in the VARIoT vulnerabilities database: VAR-202110-0395, VAR-202110-0396

Trust: 5.75

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Oct. 19, 2021, 5:31 p.m.
 Vulnerabilities: buffer overflow
Affected productsExternal IDs
vendor: huawei model: huawei
vendor: d-link model: router
vendor: cisco model: routers
vendor: cisco model: router
vendor: netgear model: router
db: NVD ids: CVE-2021-21749, CVE-2021-21748

Google Android : List of security vulnerabilities

Related entries in the VARIoT vulnerabilities database: VAR-202110-0187, VAR-202107-1287, VAR-202109-0545, VAR-202110-0165, VAR-202110-0188, VAR-202110-0189

Trust: 5.25

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 2, 2021, midnight
 Vulnerabilities: use after free, path traversal, input validation vulnerability...
Affected productsExternal IDs
vendor: samsung model: mobile
vendor: samsung model: samsung
vendor: samsung model: mobile devices
vendor: google model: android
db: NVD ids: CVE-2021-25501, CVE-2021-25450, CVE-2021-25393, CVE-2021-25463, CVE-2021-25451, CVE-2021-25429, CVE-2021-30161, CVE-2021-26689, CVE-2021-25395, CVE-2021-25456, CVE-2021-25390, CVE-2021-38591, CVE-2021-25410, CVE-2021-25391, CVE-2021-25472, CVE-2021-25426, CVE-2021-25486, CVE-2021-30162, CVE-2021-25443, CVE-2021-25484, CVE-2021-25490, CVE-2021-25482, CVE-2021-25454, CVE-2021-25428, CVE-2021-25453, CVE-2021-25412, CVE-2021-25394, CVE-2021-25502, CVE-2021-25449, CVE-2021-25485, CVE-2021-25458, CVE-2021-25444, CVE-2021-25409, CVE-2021-25460, CVE-2009-1234, CVE-2021-25430, CVE-2021-25392, CVE-2021-25483, CVE-2021-25397, CVE-2021-25473, CVE-2021-25461, CVE-2021-25413, CVE-2021-25417, CVE-2021-25414, CVE-2021-25459, CVE-2021-25462, CVE-2021-26687, CVE-2021-25427, CVE-2021-27901, CVE-2021-25474, CVE-2021-25455

Critical PrintNightmare Vulnerability Patched by Microsoft - Update Now! | Trend Micro News

Related entries in the VARIoT vulnerabilities database: VAR-202107-1010

Trust: 3.75

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Aug. 27, 2021, 8:43 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: trend micro model: trend micro security
vendor: trend micro model: security
vendor: trend micro model: micro security
vendor: trend model: trend micro security
vendor: trend model: security
vendor: trend model: micro security
db: NVD ids: CVE-2021-34527

Medtronic Recalls Medical Devices Due to Security Risks That Can Lead to Injury, Death | SecurityWeek.Com

Trust: 3.5

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Oct. 7, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: medtronic model: minimed 508
vendor: medtronic model: paradigm

Critical Vulnerability Affects Millions of IoT Devices - The Cyber Post

Trust: 4.75

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Aug. 18, 2021, 7:32 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-28372

Can a hacker remotely connect to Your Wi-Fi camera? A new vulnerability suggests yes - SAM Seamless Network

Trust: 4.0

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Oct. 26, 2021, 8 a.m.
 Vulnerabilities: -
Affected productsExternal IDs

Patchday: Attackers target Android devices

Trust: 3.75

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Nov. 3, 2021, 11:53 a.m.
 Vulnerabilities: use after free
Affected productsExternal IDs
vendor: huawei model: huawei
vendor: samsung model: galaxy
vendor: samsung model: samsung
vendor: google model: pixel
vendor: google model: android
vendor: trend model: security

Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution

Trust: 5.25

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 7, 2022, 7:33 p.m.
 Vulnerabilities: use after free, code execution
Affected productsExternal IDs
vendor: google model: home
vendor: google model: chrome
vendor: google model: google chrome
db: NVD ids: CVE-2021-38001, CVE-2021-38003, CVE-2021-37999, CVE-2021-38000, CVE-2021-37998, CVE-2021-38002, CVE-2021-37997

iPhone Users, Act Now: Install Emergency Security Patch To Fix Flaws That Make Your Device Vulnerable

Related entries in the VARIoT vulnerabilities database: VAR-202108-2057, VAR-202110-0332

Trust: 5.5

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Oct. 12, 2021, 9:35 a.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: apple model: ipad air
vendor: apple model: iphone
vendor: apple model: ipod touch
vendor: apple model: ipad
db: NVD ids: CVE-2021-30883, CVE-2021-30807

Multiple Vulnerabilities in Microsoft Edge Could Allow for Arbitrary Code Execution

Trust: 5.75

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 7, 2022, 7:34 p.m.
 Vulnerabilities: information leakage, use after free, code execution
Affected productsExternal IDs
vendor: google model: home
db: NVD ids: CVE-2021-37960, CVE-2021-37956, CVE-2021-37959, CVE-2021-37963, CVE-2021-37966, CVE-2021-37970, CVE-2021-37967, CVE-2021-37972, CVE-2021-37969, CVE-2021-37958, CVE-2021-37965, CVE-2021-37968, CVE-2021-37973, CVE-2021-37961, CVE-2021-37971, CVE-2021-37957, CVE-2021-37964, CVE-2021-37962

CISA Warns That BrakTooth Vulnerabilities Can Now Be Exploited | PCMag

Trust: 4.0

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 11, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: samsung model: samsung

Apple Spyware Vulnerability Emergency Security Update | HYPEBEAST

Trust: 3.0

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Sept. 14, 2021, 9:43 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: watchos
vendor: apple model: iphone
vendor: apple model: macos

CISA Warns That BrakTooth Vulnerabilities Can Now Be Exploited

Trust: 5.0

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Nov. 4, 2021, 8:25 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: samsung model: samsung

Update Now: Apple Patches iOS, Mac Attack That Uses Malicious PDFs to Hack Devices | PCMag

Related entries in the VARIoT vulnerabilities database: VAR-202108-2172, VAR-202108-1057

Trust: 4.75

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 11, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: watchos
vendor: apple model: watch
vendor: apple model: safari
vendor: apple model: tvos
vendor: apple model: macos
vendor: apple model: webkit
vendor: apple model: iphone
db: NVD ids: CVE-2021-30858, CVE-2021-30860