VARIoT news about IoT security

Trust: 3.0

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Nov. 26, 2021, midnight
Vulnerabilities: code execution
Affected productsExternal IDs

Trust: 5.25

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Dec. 4, 2021, 10:26 p.m.
Vulnerabilities: default password
Affected productsExternal IDs
vendor: tplink model: routers
Related entries in the VARIoT vulnerabilities database: VAR-202111-0510

Trust: 3.5

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Jan. 4, 2022, midnight
Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-3792

Trust: 4.25

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Nov. 9, 2021, 5:46 p.m.
Vulnerabilities: code execution, authentication bypass
Affected productsExternal IDs
vendor: serve model: serve
vendor: pulse secure model: pulse connect secure
vendor: pulse secure model: policy secure
vendor: pulse secure model: connect secure
vendor: pulse secure model: pulse policy secure
db: NVD ids: CVE-2019-11510, CVE-2019-11539, CVE-2020-8260, CVE-2019-1151010, CVE-2020-8243, CVE-2021-22893

Trust: 4.0

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Dec. 30, 2021, 4:22 a.m.
Vulnerabilities: denial of service
Affected productsExternal IDs

Trust: 4.75

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Nov. 9, 2021, 2:24 p.m.
Vulnerabilities: denial of service, information leak, code execution...
Affected productsExternal IDs
db: NVD ids: CVE-2021-42386, CVE-2021-42376, CVE-2021-42383, CVE-2021-42384, CVE-2021-42373, CVE-2021-42381, CVE-2021-42374, CVE-2021-42380, CVE-2021-42382, CVE-2021-42377, CVE-2021-42375, CVE-2021-42378, CVE-2021-42379, CVE-2021-42385

Trust: 4.0

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Dec. 2, 2021, 10:15 p.m.
Vulnerabilities: command injection
Affected productsExternal IDs
vendor: netgear model: router
vendor: netgear model: netgear router

Trust: 3.0

Fetched: Dec. 6, 2021, 2:33 p.m., Published: -
Vulnerabilities: -
Affected productsExternal IDs
vendor: trend model: security

Trust: 3.0

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Nov. 16, 2021, 1:37 p.m.
Vulnerabilities: -
Affected productsExternal IDs
vendor: dram model: dram

Trust: 3.75

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Dec. 3, 2021, 3:45 p.m.
Vulnerabilities: privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2010-2568

Trust: 3.5

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Jan. 2, 2022, midnight
Vulnerabilities: weak password
Affected productsExternal IDs
vendor: infineon model: trusted platform
vendor: samsung model: note
vendor: samsung model: samsung
vendor: lenovo model: system
vendor: lenovo model: yoga
vendor: lenovo model: updates
vendor: lenovo model: flex
vendor: lenovo model: thinkpad
vendor: lenovo model: thinkpad 11e
vendor: lenovo model: thinkpad 13
vendor: google model: chrome
vendor: google model: pixel
vendor: google model: chrome os m63
vendor: google model: chrome os m61
vendor: google model: chrome os
vendor: google model: chrome os m62
vendor: asus model: asus

Trust: 3.25

Fetched: Dec. 6, 2021, 2:33 p.m., Published: -
Vulnerabilities: information leakage, configuration vulnerability, brute force attack
Affected productsExternal IDs
vendor: google model: pixel
vendor: google model: android

Trust: 6.5

Fetched: Dec. 6, 2021, 2:33 p.m., Published: -
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: fibaro model: home center lite
vendor: fibaro model: fibaro home center lite
vendor: eq-3 model: ccu2
vendor: eq-3 model: homematic ccu2
db: NVD ids: cve-2021-44077, CVE-2021-44077

Trust: 5.5

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Jan. 1, 2022, midnight
Vulnerabilities: code execution, command execution, privilege escalation
Affected productsExternal IDs
vendor: citrix model: netscaler
db: NVD ids: CVE-2020-19781

Trust: 3.25

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Sept. 16, 2021, midnight
Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-44077
Related entries in the VARIoT vulnerabilities database: VAR-202109-0233

Trust: 3.5

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Jan. 3, 2022, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: aironet_1850e
vendor: cisco model: aironet_4800_firmware
vendor: cisco model: catalyst_9800_firmware
vendor: cisco model: aironet_1850i
vendor: cisco model: aironet_1830i
vendor: cisco model: 1100
vendor: cisco model: wireless_lan_controller_software
vendor: cisco model: aironet_1830e
vendor: cisco model: aironet_4800
db: NVD ids: CVE-2021-1419

Trust: 5.0

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Jan. 3, 2022, midnight
Vulnerabilities: path traversal
Affected productsExternal IDs
db: NVD ids: CVE-2021-41290
Related entries in the VARIoT vulnerabilities database: VAR-202112-0132, VAR-202112-0395

Trust: 5.25

Fetched: Dec. 6, 2021, 2:33 p.m., Published: -
Vulnerabilities: command execution, privilege escalation, control bypass...
Affected productsExternal IDs
vendor: quagga model: quagga
vendor: trend model: worry-free business security
vendor: trend model: password manager
vendor: trend model: micro worry-free business security
vendor: trend model: security
vendor: tenda model: ac15
vendor: zoho model: manageengine servicedesk plus
vendor: trend micro model: worry-free business security
vendor: trend micro model: password manager
vendor: trend micro model: micro worry-free business security
vendor: trend micro model: security
db: NVD ids: CVE-2021-44223, CVE-2021-44198, CVE-2021-44019, CVE-2021-44201, CVE-2021-44140, CVE-2021-44025, CVE-2021-44077, CVE-2021-44279, CVE-2021-44147, CVE-2021-44144, CVE-2013-0145, CVE-2021-44094, CVE-2021-44047, CVE-2021-44037, CVE-2021-44021, CVE-2021-44150, CVE-2021-44277, CVE-2021-44348, CVE-2021-44038, CVE-2021-44079, CVE-2021-44480, CVE-2021-44280, CVE-2021-44479, CVE-2021-44093, CVE-2021-44048, CVE-2021-44429, CVE-2021-44200, CVE-2021-44230, CVE-2021-44046, CVE-2021-44347, CVE-2021-44020, CVE-2021-44278, CVE-2021-44143, CVE-2021-44026, CVE-2021-44518, CVE-2021-44225, CVE-2021-44349, CVE-2021-44428, CVE-2021-44036, CVE-2021-44045, CVE-2021-44199, CVE-2009-1234, CVE-2021-44219, CVE-2021-44044, CVE-2021-44352, CVE-2021-44022, CVE-2021-44033, CVE-2021-44227, CVE-2021-44050, CVE-2021-44203, CVE-2021-44427, CVE-2021-44202

Trust: 3.0

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Jan. 15, 2021, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: check point model: check point

Trust: 3.0

Fetched: Dec. 6, 2021, 2:33 p.m., Published: Nov. 9, 2021, 11:06 a.m.
Vulnerabilities: -
Affected productsExternal IDs
vendor: siemens model: nucleus