Sign-up

VARIoT news about IoT security

Vulnerability in Cisco security devices could cause firewalls to fail | Communications Today

Related entries in the VARIoT vulnerabilities database: VAR-202005-0696, VAR-202005-0685, VAR-202007-1057, VAR-202110-1796

Trust: 5.75

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 26, 2021, 8:05 a.m.
 Vulnerabilities: buffer overflow, denial of service
Affected productsExternal IDs
vendor: cisco model: cisco adaptive security appliance
vendor: cisco model: adaptive security appliance
vendor: cisco model: firepower threat defense
vendor: cisco model: device manager
vendor: cisco model: firepower
db: NVD ids: CVE-2020-3259, CVE-2020-3187, CVE-2020-3452, CVE-2021-34704

Exclusive: Resecurity discovered 0-day vulnerability in TP-Link Wi-Fi 6 devices | IT Security News

Related entries in the VARIoT vulnerabilities database: VAR-201906-1344

Trust: 3.75

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 26, 2021, 3:13 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: tp-link model: routers
vendor: asus model: router
vendor: asus model: asus
db: NVD ids: CVE-2019-7406

Cisco vulnerability could cause your firewalls to fail | TechRadar

Related entries in the VARIoT vulnerabilities database: VAR-202110-1796

Trust: 5.75

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 23, 2021, 3:20 a.m.
 Vulnerabilities: denial of service, buffer overflow
Affected productsExternal IDs
vendor: cisco model: firepower
vendor: cisco model: cisco adaptive security appliance
vendor: cisco model: adaptive security appliance
vendor: cisco model: firepower threat defense
db: NVD ids: CVE-2021-34704

Cisco vulnerability could cause your firewalls to fail | TechRadar

Related entries in the VARIoT vulnerabilities database: VAR-202110-1796

Trust: 5.75

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 23, 2021, 3:20 a.m.
 Vulnerabilities: denial of service, buffer overflow
Affected productsExternal IDs
vendor: cisco model: firepower
vendor: cisco model: cisco adaptive security appliance
vendor: cisco model: adaptive security appliance
vendor: cisco model: firepower threat defense
db: NVD ids: CVE-2021-34704

A Study Reveals That A Vulnerability Found In MediaTek Chips Is Leaving Smartphone Microphones Completely Wide Open To Foreign Threats / Digital Information World

Trust: 3.0

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 26, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: check point model: check point

Synopsys Research Finds Vulnerabilities in 97% of Applications - EE Times Asia

Trust: 3.75

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 18, 2021, 1:09 a.m.
 Vulnerabilities: cross-site scripting
Affected productsExternal IDs

UK ISP Sky Left 6 Million Routers Vulnerable to Attack for Nearly 18 Months

Trust: 3.75

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 22, 2021, 5:55 p.m.
 Vulnerabilities: brute force attack, default credentials
Affected productsExternal IDs

Mediatek vulnerability in Android phones fixed | IT Security News

Trust: 3.0

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 29, 2021, 6:12 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: check point model: check point

Apple Just Released an Emergency Patch. Update Your Device

Related entries in the VARIoT vulnerabilities database: VAR-202108-1057

Trust: 3.75

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Sept. 14, 2021, 2:43 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: ipod touch
vendor: apple model: watchos
vendor: apple model: ipad air
vendor: apple model: macos
vendor: apple model: iphone
db: NVD ids: CVE-2021-30860

Cisco Access Points SSH Management Privilege Escalation Vulnerability - Cisco

Trust: 4.0

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Sept. 22, 2021, 11:54 a.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: cisco model: access points
vendor: cisco model: catalyst
vendor: cisco model: wireless controller
vendor: cisco model: wireless lan controller
vendor: cisco model: catalyst 9800

Report: Applications and critical data vulnerable to attack | VentureBeat

Trust: 3.75

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 24, 2021, 9:48 p.m.
 Vulnerabilities: cross-site scripting
Affected productsExternal IDs

A Mediatek security vulnerability makes your phone susceptible for hackers to track you via audio - Technophile

Trust: 4.0

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 26, 2021, 1:13 p.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs

Apple's security fix: Protect your iPhone from Pegasus now - CNET

Trust: 3.5

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Jan. 3, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: watch
vendor: apple model: watchos
vendor: apple model: macos
vendor: apple model: iphone

Vulnerability in Cisco security devices could cause firewalls to fail

Related entries in the VARIoT vulnerabilities database: VAR-202005-0685, VAR-202110-1796, VAR-202005-0696, VAR-202007-1057

Trust: 5.75

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 23, 2021, 6:15 p.m.
 Vulnerabilities: denial of service, buffer overflow
Affected productsExternal IDs
vendor: cisco model: firepower
vendor: cisco model: device manager
vendor: cisco model: cisco adaptive security appliance
vendor: cisco model: adaptive security appliance
vendor: cisco model: firepower threat defense
db: NVD ids: CVE-2020-3187, CVE-2021-34704, CVE-2020-3259, CVE-2020-3452

Eavesdropping bug impacts roughly a third of the world's smartphones - The Record by Recorded Future

Trust: 3.75

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 24, 2021, 1:16 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: check point model: check point
vendor: vivo model: vivo
vendor: xiaomi model: browser
db: NVD ids: CVE-2021-0673, CVE-2021-0663, CVE-2021-0661, CVE-2021-0662

Mitigate zero-day vulnerabilities - threat and vulnerability management | Microsoft Docs

Trust: 3.0

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Dec. 10, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2020-17087

WordPress security plugin Hide My WP addresses SQL injection, deactivation flaws | The Daily Swig

Trust: 3.0

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 25, 2021, 2:02 p.m.
 Vulnerabilities: sql injection
Affected productsExternal IDs

A vulnerability was found in all current Windows that makes it easy to gain administrator rights - Aroged

Related entries in the VARIoT vulnerabilities database: VAR-202111-0697

Trust: 4.25

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 23, 2021, 9:47 p.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2021-41379

A vulnerability was found in modern MediaTek chips that allows you to eavesdrop on a smartphone - the company has already fixed everything - Aroged

Trust: 3.75

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 24, 2021, 11:25 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: xiaomi model: redmi
vendor: check point model: check point
db: NVD ids: CVE-2021-0663, CVE-2021-0673, CVE-2021-0661, CVE-2021-0662

US, UK, and Australian Agencies Issue Joint Cybersecurity Advisory on Iranian APT Groups Targeting Critical Infrastructure - CPO Magazine

Related entries in the VARIoT vulnerabilities database: VAR-201906-0815, VAR-202008-0193, VAR-202007-0079

Trust: 4.5

Fetched: Nov. 29, 2021, 2:59 p.m., Published: Nov. 23, 2021, 6:27 a.m.
 Vulnerabilities: privilege escalation, code execution, authentication vulnerability...
Affected productsExternal IDs
vendor: filezilla model: server
vendor: filezilla model: filezilla
db: NVD ids: CVE-2018-13379, CVE-2019-5591, CVE-2021-34473, CVE-2020-12812