Sign-up

VARIoT news about IoT security

Notice - Security Vulnerability Impacting Certain Devices | LOREX Support

Related entries in the VARIoT vulnerabilities database: VAR-202109-1874, VAR-202109-1875

Trust: 3.25

Fetched: Jan. 18, 2022, 11:15 a.m., Published: Jan. 18, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-33045, CVE-2021-33044

Vulnerabilities in MediaTek chips expose millions of Android devices to eavesdropping | PC Help Forum

Trust: 3.0

Fetched: Jan. 18, 2022, 11:15 a.m., Published: Jan. 13, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: check point model: check point

Apps for popular smart home devices contain security flaws

Trust: 3.75

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 18, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: ring model: ring
vendor: google model: home
vendor: google model: google home
vendor: roku model: roku

11 Best Network Vulnerability Scanners Tested 2022 (Free + Paid Tools)

Trust: 3.5

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Feb. 27, 2019, 1:38 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: guard
vendor: cisco model: adaptive security appliance
vendor: cisco model: cisco adaptive security appliance
vendor: cisco model: series
vendor: cisco model: ios
vendor: cisco model: router
vendor: cisco model: routers

Test Your Browser Security for Vulnerabilities

Trust: 3.25

Fetched: Jan. 18, 2022, 11:14 a.m., Published: April 25, 2020, 11:07 a.m.
 Vulnerabilities: information leak, cross-site scripting, code injection
Affected productsExternal IDs
vendor: serve model: serve
vendor: google model: chrome
vendor: apple model: safari

Pepperl+Fuchs Hart Device DTM Vulnerability | CISA

Related entries in the VARIoT vulnerabilities database: VAR-201501-0399

Trust: 5.75

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Oct. 30, 2018, midnight
 Vulnerabilities: buffer overflow
Affected productsExternal IDs
vendor: codewrights model: hart device type manager
db: NVD ids: CVE-2014-9191

Device Security, Vulnerabilities, and Windows - How to, Technology and PC Security Forum | SensorsTechForum.com

Trust: 5.0

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Nov. 2, 2016, 11:39 a.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: google model: chrome
db: NVD ids: CVE-2016-7855

MikroTik Device Vulnerability to 𝙀𝙭𝙥𝙡𝙤𝙞𝙩 (CVE-2018-14847)🔥🔥 - YouTube

Related entries in the VARIoT vulnerabilities database: VAR-201808-0384

Trust: 3.75

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Sept. 14, 2018, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: mikrotik model: mikrotik
db: NVD ids: CVE-2018-14847

4 ways to properly mitigate the Log4j vulnerabilities (and 4 to skip) | CSO Online

Related entries in the VARIoT vulnerabilities database: VAR-202112-1782, VAR-202112-0566, VAR-202112-0562

Trust: 4.75

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Dec. 16, 2021, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-45105, CVE-2021-44228, CVE-2021-45046

AMD Product Security | AMD

Trust: 5.5

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Feb. 24, 2021, midnight
 Vulnerabilities: privilege escalation, denial of service
Affected productsExternal IDs
vendor: dram model: dram
db: NVD ids: CVE-2020-12890, CVE-2020-12928, CVE-2020-12927

What the Log4j vulnerability is and why you should be worried - The Week

Trust: 4.5

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 13, 2022, 8:55 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: trend model: security
vendor: apple model: icloud

Wormable Windows 11 vulnerability could let malware spread like wildfire | TechRadar

Trust: 4.0

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 12, 2022, 11:37 a.m.
 Vulnerabilities: code execution, security feature bypass, denial of service...
Affected productsExternal IDs
db: NVD ids: CVE-2022-21907

How to secure Internet-connected devices from Log4j cyber threats

Trust: 3.0

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 18, 2020, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs

Apple confirms iOS 15.2.1 patches HomeKit denial of service vulnerability - 9to5Mac

Trust: 4.5

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 13, 2022, 4:17 p.m.
 Vulnerabilities: resource exhaustion, denial of service
Affected productsExternal IDs
vendor: apple model: icloud
vendor: apple model: iphone
vendor: apple model: ipad

Positive Technologies Uncovers Vulnerability in IDEMIA Biometric Identification Devices That Can Unlock Doors and Turnstiles

Trust: 3.75

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 4, 2022, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs

Google Patches Zero-Day Vulnerability with Emergency Chrome Update

Trust: 3.0

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 10, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: chrome

New zero-day vulnerability in Windows Installer affects all versions of Microsoft's OS | TechSpot

Related entries in the VARIoT vulnerabilities database: VAR-202111-0697

Trust: 4.0

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 11, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: snort model: snort
db: NVD ids: CVE-2021-41379

Siemens SIPROTEC 5 Devices

Related entries in the VARIoT vulnerabilities database: VAR-202201-0855

Trust: 5.75

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 13, 2022, midnight
 Vulnerabilities: input validation vulnerability
Affected productsExternal IDs
vendor: siemens model: siprotec
vendor: siemens model: siprotec 5
vendor: siemens model: cp300
vendor: siemens model: cp100
db: NVD ids: CVE-2021-41769

LoadMaster Vulnerabilities - Kemp Support

Related entries in the VARIoT vulnerabilities database: VAR-202101-1926, VAR-202002-1447, VAR-202103-1464, VAR-202112-0566, VAR-202102-0786, VAR-201910-0984, VAR-202004-2205, VAR-202107-1361, VAR-202103-1463

Trust: 4.25

Fetched: Jan. 18, 2022, 11:14 a.m., Published: -
 Vulnerabilities: denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2021-3156, CVE-2020-8515, CVE-2019-0190, CVE-2021-3449, CVE-2019-1549, CVE-2020-15598, CVE-2021-44228, CVE-2022-21907, CVE-2019-1551, CVE-2019-1547, CVE-2021-3711, CVE-2019-1563, CVE-2021-1732, CVE-2019-16905, CVE-2020-1967, CVE-2020-10029, CVE-2021-33910, CVE-2021-33909, CVE-2021-41068, CVE-2021-41069, CVE-2021-3450, CVE-2021-45080

Mobile Application Security Threats and Vulnerabilities 2019: Mobile Device Security - Attacks Research

Related entries in the VARIoT vulnerabilities database: VAR-201611-0386

Trust: 4.25

Fetched: Jan. 18, 2022, 11:14 a.m., Published: Jan. 18, 2019, midnight
 Vulnerabilities: session hijacking, configuration vulnerability, denial of service...
Affected productsExternal IDs
vendor: google model: android
vendor: google model: wi-fi router
vendor: apple model: icloud
vendor: alcatel model: operating system
db: NVD ids: CVE-2019-5765, CVE-2016-5195