Sign-up

VARIoT news about IoT security

iOS 15.2 devices are vulnerable to HomeKit Doorlock issue - Gizchina.com

Trust: 5.75

Fetched: Jan. 14, 2022, 11:34 a.m., Published: -
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: icloud
vendor: apple model: iphone

Apple releases iOS 15.2.1 to patch a serious HomeKit DDoS vulnerability | Engadget

Trust: 4.0

Fetched: Jan. 14, 2022, 11:34 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: icloud
vendor: apple model: iphone

Dangerous "Log4j" security vulnerability affects everything from Apple to Minecraft

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 4.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 10, 2021, 10:23 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: icloud
vendor: apple model: iphone
db: NVD ids: CVE-2021-44228

Apache Log4j Vulnerability Guidance | CISA

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 5.0

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 2, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228

Vulnerabilities in billions of Wi-Fi and Bluetooth units can lead to password and data theft

Trust: 5.75

Fetched: Jan. 4, 2022, 1:51 p.m., Published: -
 Vulnerabilities: privilege escalation, code execution, denial of service
Affected productsExternal IDs
vendor: broadcom model: broadcom
db: NVD ids: CVE-2020-10367, CVE-2020-10369, CVE-2019-15063, CVE-2020-10370, CVE-2020-10368

ControlSuite and the Log4j vulnerability CVE-2021-44228 - Kofax

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 3.0

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 13, 2021, 8:36 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228

CSCwa46963 - Security: CVE-2021-44228 -> Log4j 2 Vulnerability - Cisco Community

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 3.75

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 13, 2021, 9:40 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: device manager
vendor: cisco model: firepower
vendor: cisco model: firepower management center
db: NVD ids: CVE-2021-44228

Cyber Security Threat: “Log4Shell Vulnerability” Explained

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 3.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 2, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: palo model: palo alto networks
vendor: palo model: networks
vendor: cisco model: access points
vendor: palo alto networks model: palo alto networks
vendor: palo alto networks model: networks
db: NVD ids: CVE-2021-44228

iOS Devices Can Freeze, Crash Due to a HomeKit Vulnerability - Samachar Central

Trust: 3.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 4, 2022, 9:22 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: macos
vendor: apple model: iphone
vendor: apple model: icloud

5 Vulnerabilities in Medical Devices That Can Create Chaos - Security Boulevard

Trust: 3.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 27, 2021, 10:13 a.m.
 Vulnerabilities: denial of service, code execution, password guessing...
Affected productsExternal IDs

"Internet's On Fire Right Now": Millions Of Devices At Risk Over New Software Vulnerability - Investing Book Deals

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 4.75

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 15, 2021, 2:03 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: canary model: canary
vendor: apple model: icloud
db: NVD ids: CVE-2021-44228

Some Lenovo Laptops Have Admin Level Security Vulnerability | Link Tech Computer Services

Related entries in the VARIoT vulnerabilities database: VAR-202112-2487, VAR-202112-2486

Trust: 4.0

Fetched: Jan. 4, 2022, 1:51 p.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: lenovo model: system
vendor: lenovo model: thinkpad
vendor: lenovo model: yoga
vendor: lenovo model: power management
vendor: lenovo model: updates
db: NVD ids: CVE-2021-3969, CVE-2021-3922

Samsung monthly updates: December 2021 security patch gets detailed - SamMobile

Trust: 3.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 7, 2021, 9:35 a.m.
 Vulnerabilities: improper access control, input validation vulnerability, improper validation...
Affected productsExternal IDs
vendor: broadcom model: broadcom
vendor: google model: android
vendor: samsung model: galaxy note
vendor: samsung model: galaxy s10
vendor: samsung model: exynos
vendor: samsung model: galaxy
vendor: samsung model: note
vendor: samsung model: samsung
vendor: samsung model: note 10

33 hardware and firmware vulnerabilities: A guide to the threats | CSO Online

Related entries in the VARIoT vulnerabilities database: VAR-201808-0959, VAR-201805-0967, VAR-201807-2218, VAR-201905-0711, VAR-201905-0709, VAR-201905-0710, VAR-201905-1248, VAR-201806-1505, VAR-201801-1712, VAR-201805-0963, VAR-201808-0958, VAR-201801-0826, VAR-201801-1711, VAR-201808-0957, VAR-201611-0121

Trust: 5.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 7, 2021, midnight
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: dram model: dram
vendor: google model: android
db: NVD ids: CVE-2018-3615, CVE-2018-3640, CVE-2018-3693, CVE-2018-12130, CVE-2018-12126, CVE-2018-12127, CVE-2019-11091, CVE-2018-3665, CVE-2017-5753, CVE-2018-3639, CVE-2018-3620, CVE-2017-5715, CVE-2017-5754, CVE-2018-3646, CVE-2016-6728, CVE-2020-8695, CVE-2020-8694

The OWASP IoT Top 10 List of Vulnerabilities - InfoSec Insights

Trust: 3.75

Fetched: Jan. 4, 2022, 1:51 p.m., Published: -
 Vulnerabilities: denial of service
Affected productsExternal IDs

‘Internet’s on Fire Right Now’: Millions of Devices at Risk Over New Software Vulnerability - NTD CANADA

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 4.75

Fetched: Jan. 4, 2022, 1:51 p.m., Published: -
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: canary model: canary
vendor: apple model: icloud
db: NVD ids: CVE-2021-44228

Researchers discover serious server vulnerability in iPhone and Tesla devices | TechGig

Trust: 4.75

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 14, 2021, 10:54 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: icloud

IOS users might face device freezing and crashing due to issue with HomeKit - UK Time News

Trust: 5.75

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 4, 2022, 9:12 a.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: macos
vendor: apple model: iphone
vendor: apple model: icloud

Log4j vulnerability 2021, the latest important information for businesses

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 5.0

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 14, 2021, 5:39 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: check point model: check point
db: NVD ids: CVE-2021-44228

Log4J "Log4Shell" Zero-Day Vulnerability: Impact and Fixes - FOSSA

Related entries in the VARIoT vulnerabilities database: VAR-202112-1782, VAR-202112-0566

Trust: 4.0

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 10, 2021, 10:34 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-45105, CVE-2021-44228