VARIoT latest news about IoT security

Vulnerability in Cisco security devices could cause firewalls to fail Related entries in the VARIoT vulnerabilities database: VAR-202005-0685, VAR-202110-1796, VAR-202005-0696, VAR-202007-1057 Trust: 5.75 Fetched: Nov. 25, 2021, 9:59 a.m., Published: Nov. 23, 2021, 6:15 p.m.	Vulnerabilities: buffer overflow, denial of service

Affected products

External IDs

vendor:	cisco	model:	adaptive security appliance
vendor:	cisco	model:	cisco adaptive security appliance
vendor:	cisco	model:	device manager
vendor:	cisco	model:	firepower
vendor:	cisco	model:	firepower threat defense

db:

NVD

ids:

CVE-2020-3187, CVE-2021-34704, CVE-2020-3259, CVE-2020-3452

Cisco vulnerability could cause your firewalls to fail \| TechRadar Related entries in the VARIoT vulnerabilities database: VAR-202110-1796 Trust: 5.75 Fetched: Nov. 25, 2021, 9:59 a.m., Published: Nov. 23, 2021, 3:20 a.m.	Vulnerabilities: buffer overflow, denial of service

Affected products

External IDs

vendor:	cisco	model:	adaptive security appliance
vendor:	cisco	model:	cisco adaptive security appliance
vendor:	cisco	model:	firepower
vendor:	cisco	model:	firepower threat defense

db:

NVD

ids:

CVE-2021-34704

Cisco IOS and IOS XE Software TrustSec CLI Parser Denial of Service Vulnerability - Cisco Trust: 3.75 Fetched: Nov. 25, 2021, 9:59 a.m., Published: Dec. 30, 2021, 10:58 p.m.	Vulnerabilities: denial of service

Affected products

External IDs

vendor:	cisco	model:	cisco ios
vendor:	cisco	model:	ios xe software
vendor:	cisco	model:	ios xe

CVE - CVE-2021-1587 Trust: 5.75 Fetched: Nov. 25, 2021, 9:59 a.m., Published: Jan. 3, 2022, midnight	Vulnerabilities: denial of service

Affected products

External IDs

vendor:	cisco systems	model:	cisco nx-os
vendor:	cisco systems	model:	nx-os software
vendor:	cisco systems	model:	nx-os
vendor:	cisco systems	model:	cisco systems
vendor:	cisco	model:	cisco nx-os
vendor:	cisco	model:	nx-os software
vendor:	cisco	model:	nx-os
vendor:	cisco	model:	cisco systems

db:

NVD

ids:

CVE-2021-1587

Vulnerability in Cisco security devices could cause firewalls to fail Related entries in the VARIoT vulnerabilities database: VAR-202005-0685, VAR-202110-1796, VAR-202005-0696, VAR-202007-1057 Trust: 5.75 Fetched: Nov. 25, 2021, 9:59 a.m., Published: Nov. 23, 2021, 6:15 p.m.	Vulnerabilities: buffer overflow, denial of service

Affected products

External IDs

vendor:	cisco	model:	adaptive security appliance
vendor:	cisco	model:	cisco adaptive security appliance
vendor:	cisco	model:	device manager
vendor:	cisco	model:	firepower
vendor:	cisco	model:	firepower threat defense

db:

NVD

ids:

CVE-2020-3187, CVE-2021-34704, CVE-2020-3259, CVE-2020-3452

Proof-of-concept Test Finds Apple Vulnerability Trust: 3.0 Fetched: Nov. 25, 2021, 9:59 a.m., Published: Sept. 15, 2021, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

apple

model:

iphone

Apple sues Pegasus for spyware maker. How to check if your iPhone has NSO Group software - CNET Trust: 3.5 Fetched: Nov. 25, 2021, 9:59 a.m., Published: Jan. 10, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	apple	model:	iphone
vendor:	apple	model:	watch
vendor:	apple	model:	ipad

News Item Related entries in the VARIoT vulnerabilities database: VAR-202108-2057 Trust: 3.75 Fetched: Nov. 25, 2021, 9:59 a.m., Published: May 11, 2021, 6:39 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	apple	model:	ipad
vendor:	apple	model:	iphone

db:

NVD

ids:

CVE-2021-30883

Is it safe to use an old, outdated or preowned Android phone? - CNET Trust: 3.5 Fetched: Nov. 25, 2021, 9:59 a.m., Published: Jan. 3, 2022, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:	nokia	model:	nokia
vendor:	nokia	model:	series
vendor:	samsung	model:	samsung
vendor:	samsung	model:	android phone
vendor:	samsung	model:	galaxy
vendor:	samsung	model:	galaxy s6
vendor:	samsung	model:	samsung galaxy
vendor:	sony	model:	camera
vendor:	google	model:	pixel
vendor:	google	model:	android
vendor:	google	model:	nexus
vendor:	google	model:	home
vendor:	apple	model:	iphone

Israeli spy tech firm exploited vulnerability on ALL IPHONE devices to implant ‘Pegasus’ malware - report - RT World News Trust: 3.5 Fetched: Nov. 24, 2021, 2:35 p.m., Published: Sept. 13, 2021, 8:53 p.m.	Vulnerabilities: integer overflow

Affected products

External IDs

vendor:	apple	model:	iphone
vendor:	apple	model:	watch

Critical security vulnerabilities put millions of healthcare devices at risk \| TechRadar Trust: 3.75 Fetched: Nov. 24, 2021, 2:35 p.m., Published: Nov. 10, 2021, 4:15 p.m.	Vulnerabilities: denial of service, code execution

Affected products

External IDs

vendor:

siemens

model:

nucleus

Security Advisories Related entries in the VARIoT vulnerabilities database: VAR-202110-1690, VAR-202103-0654, VAR-202108-1914, VAR-202106-0639, VAR-202108-1057, VAR-202110-1394, VAR-202108-2172, VAR-202110-1691, VAR-202107-1010, VAR-202103-0655, VAR-202103-0961, VAR-202109-1909, VAR-202110-1571, VAR-202103-0965, VAR-202111-1713, VAR-202111-1608, VAR-202111-1607, VAR-202111-1606, VAR-202111-1604, VAR-202111-1613, VAR-202111-1612, VAR-202111-1611, VAR-202111-1609, VAR-202111-1610, VAR-202111-1605, VAR-202111-1616, VAR-202111-1615, VAR-202111-1614, VAR-202111-1714, VAR-202111-1712, VAR-202111-1710, VAR-202104-1963, VAR-202104-1960 Trust: 3.0 Fetched: Nov. 24, 2021, 2:35 p.m., Published: Dec. 14, 2021, midnight	Vulnerabilities: -

Affected products

External IDs

db:	NVD	ids:	CVE-2021-42013, CVE-2021-34481, CVE-2021-22986, CVE-2021-24094, CVE-2021-21973, CVE-2021-36942, CVE-2019-18935, CVE-2021-1675, CVE-2021-30860, CVE-2021-34783, CVE-2021-21985, CVE-2021-30858, CVE-2021-24086, CVE-2021-35211, CVE-2021-41773, CVE-2021-36934, CVE-2021-34527, CVE-2021-22987, cve-2021-30858, CVE-2021-22992, CVE-2021-24074, CVE-2021-21974, CVE-2021-21986, CVE-2021-40444, cve-2021-35211, CVE-2021-2021, CVE-2021-41524, CVE-2021-22991, CVE-2021-21972
db:	ICS CERT	ids:	ICSMA-21-322-01, ICSA-21-313-03, ICSMA-21-322-02, ICSA-21-119-04
db:	USCERT	ids:	AA21-055A, AA21-048A, AA21-062A, AA21-110A
db:	US CERT	ids:	ICSA-21-313-03, ICSA-21-119-04
db:	VMWARE	ids:	VMSA-2021-0020.1, VMSA-2021-0010, VMSA-2021-0020

Full Stack Risk Based Vulnerability Management Platform \| Outpost 24 Trust: 3.25 Fetched: Nov. 24, 2021, 2:35 p.m., Published: Nov. 23, 2021, midnight	Vulnerabilities: -

Affected products

External IDs

vendor:

serve

model:

serve

Find out how long your tech will last with our free security tools - Which? News Trust: 3.5 Fetched: Nov. 24, 2021, 2:35 p.m., Published: Nov. 16, 2021, 10:26 a.m.	Vulnerabilities: -

Affected products

External IDs

vendor:	essential	model:	phone
vendor:	samsung	model:	galaxy
vendor:	samsung	model:	samsung
vendor:	samsung	model:	mobile
vendor:	samsung	model:	mobile phones
vendor:	netgear	model:	router
vendor:	lenovo	model:	desktop
vendor:	lenovo	model:	updates
vendor:	tp-link	model:	routers
vendor:	google	model:	home

GovCERT.HK - Security Alert (A21-10-19): Multiple Vulnerabilities in Apple iOS and iPadOS Related entries in the VARIoT vulnerabilities database: VAR-202108-2067, VAR-202108-2065, VAR-202108-2055, VAR-202108-2086, VAR-202108-2085, VAR-202108-2051, VAR-202108-2161, VAR-202108-2048, VAR-202108-2045, VAR-202108-2080, VAR-202108-2081, VAR-202108-2110, VAR-202108-2039, VAR-202108-2049, VAR-202108-2066 Trust: 5.75 Fetched: Nov. 24, 2021, 2:35 p.m., Published: -	Vulnerabilities: code execution, privilege escalation, restriction bypass...

Affected products

External IDs

vendor:	apple	model:	ipod touch
vendor:	apple	model:	ipad
vendor:	apple	model:	iphone

db:

NVD

ids:

CVE-2021-30875, CVE-2021-30886, CVE-2021-30894, CVE-2021-30907, CVE-2021-30911, CVE-2021-30900, CVE-2021-30905, CVE-2021-30903, CVE-2021-30909, CVE-2021-30919, CVE-2021-30914, CVE-2021-30917, CVE-2021-30890, CVE-2021-30902, CVE-2021-30881

Vulnerability in Cisco Security Devices Is Dangerous For Business Processes in Large Companies : @VMblog Related entries in the VARIoT vulnerabilities database: VAR-202110-1796, VAR-202005-0685, VAR-202005-0696, VAR-202007-1057 Trust: 5.75 Fetched: Nov. 24, 2021, 2:35 p.m., Published: Jan. 3, 2022, midnight	Vulnerabilities: buffer overflow, denial of service

Affected products

External IDs

vendor:	cisco	model:	firepower
vendor:	cisco	model:	firepower threat defense
vendor:	cisco	model:	device manager
vendor:	cisco	model:	adaptive security appliance

db:

NVD

ids:

CVE-2021-34704, CVE-2020-3187, CVE-2020-3259, CVE-2020-3452

vulnerability-scan from deviceinsight - Github Help Trust: 3.25 Fetched: Nov. 24, 2021, 2:35 p.m., Published: Jan. 2, 2022, midnight	Vulnerabilities: configuration vulnerability

Affected products	External IDs

How to hack Hikvision camera (the easy way) - Learn CCTV.com Trust: 4.25 Fetched: Nov. 24, 2021, 2:35 p.m., Published: -	Vulnerabilities: default password

Affected products

External IDs

vendor:	hikvision	model:	hikvision
vendor:	hikvision	model:	hikvision camera
vendor:	hikvision	model:	camera
vendor:	hikvision	model:	ip cameras

Five New Vulnerabilities Disclosed in Patient Monitoring Systems Related entries in the VARIoT vulnerabilities database: VAR-202111-1713, VAR-202111-1710, VAR-202111-1712, VAR-202111-1714 Trust: 3.75 Fetched: Nov. 24, 2021, 2:35 p.m., Published: Nov. 23, 2021, 1 p.m.	Vulnerabilities: denial of service

Affected products

External IDs

db:

NVD

ids:

CVE-2021-32993, CVE-2021-43550, CVE-2021-43552, CVE-2021-33017, CVE-2021-43548

11 Types of Malware + Examples That You Should Know Trust: 3.75 Fetched: Nov. 24, 2021, 2:35 p.m., Published: Dec. 7, 2021, 7:28 p.m.	Vulnerabilities: -

Affected products

External IDs

vendor:

serve

model:

serve

db:

USCERT

ids:

TA18-201A

VARIoT news about IoT security