Sign-up

VARIoT news about IoT security

Hundreds Of Millions Of Devices At Risk From New Software Vulnerability | Real Radio 104.1

Trust: 3.0

Fetched: Jan. 18, 2022, 11:20 a.m., Published: Jan. 14, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: icloud

Absolute Security Bulletin: Log4j2 Remote Code Execution (RCE) Vulnerability (CVE-2021-44228, CVE-2021-45046, CVE2021-45105 and CVE-2021-4104)

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566, VAR-202112-0562

Trust: 4.25

Fetched: Jan. 18, 2022, 11:20 a.m., Published: Jan. 13, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228, CVE-2021-4104, CVE-2021-45046

Hundreds Of Millions Of Devices At Risk From New Software Vulnerability | NewsRadio 840 WHAS

Trust: 3.0

Fetched: Jan. 18, 2022, 11:19 a.m., Published: Jan. 15, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: icloud

Hundreds Of Millions Of Devices At Risk From New Software Vulnerability | Newsradio WTAM 1100

Trust: 3.0

Fetched: Jan. 18, 2022, 11:19 a.m., Published: Jan. 14, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: icloud

Nearly 100 TCP/IP Stack Vulnerabilities Found During 18-Month Research Project | SecurityWeek.Com

Trust: 4.0

Fetched: Jan. 18, 2022, 11:19 a.m., Published: Jan. 18, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: treck model: tcp/ip stack

Hundreds Of Millions Of Devices At Risk From New Software Vulnerability | NewsRadio 560 WHYN

Trust: 3.0

Fetched: Jan. 18, 2022, 11:19 a.m., Published: Jan. 14, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: icloud

Apache Log4J Vulnerability Daily Update | TIBCO Software

Related entries in the VARIoT vulnerabilities database: VAR-202112-2011, VAR-202112-1782, VAR-202112-0566, VAR-202112-0562

Trust: 3.5

Fetched: Jan. 18, 2022, 11:19 a.m., Published: Jan. 18, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: tibco model: tibco enterprise message service
vendor: tibco model: rendezvous
vendor: tibco model: tibco rendezvous
vendor: tibco model: api exchange gateway
vendor: tibco model: enterprise message service
vendor: tibco software model: tibco enterprise message service
vendor: tibco software model: rendezvous
vendor: tibco software model: tibco rendezvous
vendor: tibco software model: api exchange gateway
vendor: tibco software model: enterprise message service
db: NVD ids: CVE-2021-44832, CVE-2021-45105, CVE-2021-44228, CVE-2021-45046

Update: Notice on potential impact of Apache Log4j vulnerability towards Ricoh products and services | Ricoh Europe

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 5.25

Fetched: Jan. 18, 2022, 11:19 a.m., Published: Jan. 13, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228

Cisco Talos Intelligence Group - Comprehensive Threat Intelligence: Vulnerability Spotlight: Vulnerabilities in metal detector peripheral could allow attackers to manipulate security devices

Trust: 4.5

Fetched: Jan. 18, 2022, 11:19 a.m., Published: Jan. 13, 2022, midnight
 Vulnerabilities: buffer overflow, directory traversal, code execution
Affected productsExternal IDs
vendor: snort.org model: snort
vendor: snort model: snort
db: NVD ids: CVE-2021-21905, CVE-2021-21904, CVE-2021-21901, CVE-2021-21909, CVE-2021-21907, CVE-2021-21908, CVE-2021-21906, CVE-2021-21903, CVE-2021-21902

30M Dell Devices at Risk for Remote BIOS Attacks, RCE | Threatpost

Trust: 3.0

Fetched: Jan. 18, 2022, 11:19 a.m., Published: Jan. 18, 2022, 10:49 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios

Over 100 GE Healthcare Devices Affected by Critical Vulnerability | SecurityWeek.Com

Trust: 4.0

Fetched: Jan. 18, 2022, 11:19 a.m., Published: Jan. 18, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: ge healthcare model: xeleris
db: NVD ids: CVE-2020-25179

Hundreds Of Millions Of Devices At Risk From New Software Vulnerability | Twin Cities News Talk

Trust: 3.0

Fetched: Jan. 18, 2022, 11:19 a.m., Published: Jan. 14, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: icloud

Hundreds Of Millions Of Devices At Risk From New Software Vulnerability | News Radio 101.9 Big WAAX

Trust: 3.0

Fetched: Jan. 18, 2022, 11:19 a.m., Published: Jan. 14, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: icloud

Log4j Vulnerability | GW Information Technology | The George Washington University

Related entries in the VARIoT vulnerabilities database: VAR-202112-1782, VAR-202112-0566

Trust: 5.0

Fetched: Jan. 18, 2022, 11:19 a.m., Published: Dec. 19, 2021, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: zoom model: zoom
db: NVD ids: CVE-2021-45105, CVE-2021-44228

Impact of CVE-2021-44228 and CVE-2021-45046 Apache Log4j Vulnerability on NetBackup

Related entries in the VARIoT vulnerabilities database: VAR-202112-1782, VAR-202112-0566, VAR-202112-2011, VAR-201912-0889, VAR-202112-0562

Trust: 4.5

Fetched: Jan. 18, 2022, 11:19 a.m., Published: Jan. 18, 2022, 11:19 a.m.
 Vulnerabilities: denial of service, code execution
Affected productsExternal IDs
vendor: veritas model: netbackup appliance
db: NVD ids: CVE-2021-45105, CVE-2021-44228, CVE-2021-4104, CVE-2021-45056, CVE-2021-44832, CVE-2019-17571, CVE-2021-4504, CVE-2021-45046

Yealink Device Management Command Injection Vulnerability - SonicWall

Trust: 4.75

Fetched: Jan. 18, 2022, 11:19 a.m., Published: Sept. 20, 2021, midnight
 Vulnerabilities: code execution, command injection
Affected productsExternal IDs
db: NVD ids: CVE-2021-27561

CISA issues emergency directive to fix Log4j vulnerability • The Register

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566, VAR-202112-0562

Trust: 3.5

Fetched: Jan. 18, 2022, 11:19 a.m., Published: Jan. 13, 2022, midnight
 Vulnerabilities: denial of service, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228, CVE-2021-45046

Hundreds of thousands of MikroTik devices still vulnerable to botnets | MalwareTips Community

Trust: 5.0

Fetched: Jan. 18, 2022, 11:18 a.m., Published: Jan. 13, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: mikrotik model: mikrotik routers
vendor: mikrotik model: mikrotik
vendor: mikrotik model: routers

Hundreds Of Millions Of Devices At Risk From New Software Vulnerability | 1490 WBEX

Trust: 3.0

Fetched: Jan. 18, 2022, 11:18 a.m., Published: Jan. 14, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: icloud

Hundreds Of Millions Of Devices At Risk From New Software Vulnerability | NewsRadio WFLA

Trust: 3.0

Fetched: Jan. 18, 2022, 11:18 a.m., Published: Jan. 14, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: icloud