Sign-up

VARIoT news about IoT security

Apple HomeKit security bug can brick iPhones | NextPit

Trust: 3.75

Fetched: Jan. 14, 2022, 11:34 a.m., Published: Jan. 3, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: ipad

Alert! iPhone bug 'NoReboot' can make it vulnerable to hackers

Trust: 3.0

Fetched: Jan. 14, 2022, 11:34 a.m., Published: Jan. 11, 2022, 6 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone

Log4J Vulnerability - Remote Management - ESET Security Forum

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 3.25

Fetched: Jan. 14, 2022, 11:34 a.m., Published: Dec. 28, 2021, 9:36 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228

US Warns Hundreds of Millions of Devices at Risk Over New Software Vulnerability

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 4.75

Fetched: Jan. 14, 2022, 11:34 a.m., Published: Dec. 14, 2021, 10:35 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: canary model: canary
vendor: apple model: icloud
db: NVD ids: CVE-2021-44228

Mitigating the log4j Vulnerability (CVE-2021-44228) with NGINX - NGINX

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 4.5

Fetched: Jan. 14, 2022, 11:34 a.m., Published: Dec. 14, 2021, 6:56 p.m.
 Vulnerabilities: code execution, code injection
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228

Kryptowire Collaborates with Orange and Uncovers Major Vulnerabilities in Mobile Devices at Scale | Nachricht | finanzen.net

Trust: 3.0

Fetched: Jan. 14, 2022, 11:34 a.m., Published: -
 Vulnerabilities: command execution
Affected productsExternal IDs

‘Internet’s on Fire Right Now’: Millions of Devices at Risk Over New Software Vulnerability - [your]NEWS

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 5.0

Fetched: Jan. 14, 2022, 11:34 a.m., Published: Dec. 14, 2021, 4:10 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: canary model: canary
db: NVD ids: CVE-2021-44228

iOS 15.2 devices are vulnerable to HomeKit Doorlock issue - Gizchina.com

Trust: 5.75

Fetched: Jan. 14, 2022, 11:34 a.m., Published: -
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: icloud
vendor: apple model: iphone

Apple releases iOS 15.2.1 to patch a serious HomeKit DDoS vulnerability | Engadget

Trust: 4.0

Fetched: Jan. 14, 2022, 11:34 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: icloud
vendor: apple model: iphone

Dangerous "Log4j" security vulnerability affects everything from Apple to Minecraft

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 4.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 10, 2021, 10:23 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: icloud
vendor: apple model: iphone
db: NVD ids: CVE-2021-44228

Apache Log4j Vulnerability Guidance | CISA

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 5.0

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 2, 2022, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228

Vulnerabilities in billions of Wi-Fi and Bluetooth units can lead to password and data theft

Trust: 5.75

Fetched: Jan. 4, 2022, 1:51 p.m., Published: -
 Vulnerabilities: privilege escalation, code execution, denial of service
Affected productsExternal IDs
vendor: broadcom model: broadcom
db: NVD ids: CVE-2020-10367, CVE-2020-10369, CVE-2019-15063, CVE-2020-10370, CVE-2020-10368

ControlSuite and the Log4j vulnerability CVE-2021-44228 - Kofax

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 3.0

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 13, 2021, 8:36 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228

CSCwa46963 - Security: CVE-2021-44228 -> Log4j 2 Vulnerability - Cisco Community

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 3.75

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 13, 2021, 9:40 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: device manager
vendor: cisco model: firepower
vendor: cisco model: firepower management center
db: NVD ids: CVE-2021-44228

Cyber Security Threat: “Log4Shell Vulnerability” Explained

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 3.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 2, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: palo model: palo alto networks
vendor: palo model: networks
vendor: cisco model: access points
vendor: palo alto networks model: palo alto networks
vendor: palo alto networks model: networks
db: NVD ids: CVE-2021-44228

iOS Devices Can Freeze, Crash Due to a HomeKit Vulnerability - Samachar Central

Trust: 3.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Jan. 4, 2022, 9:22 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: macos
vendor: apple model: iphone
vendor: apple model: icloud

5 Vulnerabilities in Medical Devices That Can Create Chaos - Security Boulevard

Trust: 3.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 27, 2021, 10:13 a.m.
 Vulnerabilities: denial of service, code execution, password guessing...
Affected productsExternal IDs

"Internet's On Fire Right Now": Millions Of Devices At Risk Over New Software Vulnerability - Investing Book Deals

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 4.75

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 15, 2021, 2:03 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: canary model: canary
vendor: apple model: icloud
db: NVD ids: CVE-2021-44228

Some Lenovo Laptops Have Admin Level Security Vulnerability | Link Tech Computer Services

Related entries in the VARIoT vulnerabilities database: VAR-202112-2487, VAR-202112-2486

Trust: 4.0

Fetched: Jan. 4, 2022, 1:51 p.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: lenovo model: system
vendor: lenovo model: thinkpad
vendor: lenovo model: yoga
vendor: lenovo model: power management
vendor: lenovo model: updates
db: NVD ids: CVE-2021-3969, CVE-2021-3922

Samsung monthly updates: December 2021 security patch gets detailed - SamMobile

Trust: 3.5

Fetched: Jan. 4, 2022, 1:51 p.m., Published: Dec. 7, 2021, 9:35 a.m.
 Vulnerabilities: improper access control, input validation vulnerability, improper validation...
Affected productsExternal IDs
vendor: broadcom model: broadcom
vendor: google model: android
vendor: samsung model: galaxy note
vendor: samsung model: galaxy s10
vendor: samsung model: exynos
vendor: samsung model: galaxy
vendor: samsung model: note
vendor: samsung model: samsung
vendor: samsung model: note 10