Sign-up

VARIoT news about IoT security

vulnerability-scan from deviceinsight - Github Help

Trust: 3.25

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Jan. 2, 2022, midnight
 Vulnerabilities: configuration vulnerability
Affected productsExternal IDs

How to hack Hikvision camera (the easy way) - Learn CCTV.com

Trust: 4.25

Fetched: Nov. 24, 2021, 2:35 p.m., Published: -
 Vulnerabilities: default password
Affected productsExternal IDs
vendor: hikvision model: hikvision
vendor: hikvision model: hikvision camera
vendor: hikvision model: camera
vendor: hikvision model: ip cameras

Five New Vulnerabilities Disclosed in Patient Monitoring Systems

Related entries in the VARIoT vulnerabilities database: VAR-202111-1713, VAR-202111-1710, VAR-202111-1712, VAR-202111-1714

Trust: 3.75

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Nov. 23, 2021, 1 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2021-32993, CVE-2021-43550, CVE-2021-43552, CVE-2021-33017, CVE-2021-43548

11 Types of Malware + Examples That You Should Know

Trust: 3.75

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Dec. 7, 2021, 7:28 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: serve model: serve
db: USCERT ids: TA18-201A

Critical encryption vulnerability found in secure communications platform Matrix | The Daily Swig

Trust: 3.25

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Sept. 14, 2021, 2:03 p.m.
 Vulnerabilities: encryption vulnerability
Affected productsExternal IDs
db: NVD ids: CVE-2021-40823, CVE-2021-40824

Philips Working on Patches for Vulnerabilities Found in Medical Products | SecurityWeek.Com

Related entries in the VARIoT vulnerabilities database: VAR-202111-1713, VAR-202111-1712, VAR-202111-1710, VAR-202111-1714

Trust: 4.5

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Jan. 14, 2022, midnight
 Vulnerabilities: authentication bypass, denial of service
Affected productsExternal IDs
vendor: philips model: intellibridge ec40
db: NVD ids: CVE-2021-32993, CVE-2021-43552, CVE-2021-33017, CVE-2021-43550, CVE-2021-43548

Vulnerability in Cisco Security Devices Is Dangerous For Business Processes in Large Companies

Related entries in the VARIoT vulnerabilities database: VAR-202007-1057, VAR-202005-0696, VAR-202005-0685, VAR-202110-1796

Trust: 5.5

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Nov. 24, 2021, 8:57 a.m.
 Vulnerabilities: denial of service, buffer overflow
Affected productsExternal IDs
vendor: cisco model: adaptive security appliance
vendor: cisco model: firepower
vendor: cisco model: device manager
vendor: cisco model: firepower threat defense
db: NVD ids: CVE-2020-3452, CVE-2020-3259, CVE-2020-3187, CVE-2021-34704

Five New Vulnerabilities Disclosed in Patient Monitoring Systems - Security Boulevard

Related entries in the VARIoT vulnerabilities database: VAR-202111-1713, VAR-202111-1710, VAR-202111-1712, VAR-202111-1714

Trust: 3.75

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Nov. 23, 2021, 1 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2021-32993, CVE-2021-43550, CVE-2021-43552, CVE-2021-33017, CVE-2021-43548

A new vulnerability in Windows makes it easy to get admin rights

Related entries in the VARIoT vulnerabilities database: VAR-202111-0697

Trust: 4.0

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Nov. 24, 2021, 10:31 a.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2021-41379

Researcher Releases Updated 0-Day Vulnerability for Windows Systems after Patch Tuesday

Related entries in the VARIoT vulnerabilities database: VAR-202111-0697

Trust: 3.0

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Dec. 15, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-41379

Researcher Releases Updated 0-Day Vulnerability for Windows Systems after Patch Tuesday

Related entries in the VARIoT vulnerabilities database: VAR-202111-0697

Trust: 3.0

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Dec. 15, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-41379

Philips IntelliBridge Hub Vulnerabilities - NHS Digital

Related entries in the VARIoT vulnerabilities database: VAR-202111-1713

Trust: 3.5

Fetched: Nov. 24, 2021, 2:35 p.m., Published: Dec. 14, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-33017, CVE-2021-32993

Software Flaws Leave Medical Devices Vulnerable to Attack

Related entries in the VARIoT vulnerabilities database: VAR-202111-1605

Trust: 4.5

Fetched: Nov. 23, 2021, 9:28 a.m., Published: Nov. 10, 2021, midnight
 Vulnerabilities: denial of service, code execution
Affected productsExternal IDs
vendor: siemens model: nucleus net
vendor: siemens model: nucleus rtos
vendor: siemens model: nucleus
db: NVD ids: CVE-2021-31886

Tracking CVE-2021-26084 and Other Server-Based Vulnerability Exploits via Trend Micro Cloud One and Trend Micro Vision One

Trust: 4.25

Fetched: Nov. 23, 2021, 9:28 a.m., Published: Oct. 18, 2021, midnight
 Vulnerabilities: command injection, script execution, injection attack...
Affected productsExternal IDs
vendor: trend model: deep security
vendor: trend model: security
vendor: trend micro model: deep security
vendor: trend micro model: security
db: NVD ids: CVE-2021-26084, CVE-2020-14882, CVE-2020-14883, CVE-2020-14750

Flaws on Nucleus TCP/IP Stack Impact Safety-Critical Devices | Decipher

Related entries in the VARIoT vulnerabilities database: VAR-202111-1605, VAR-202111-1604

Trust: 4.5

Fetched: Nov. 23, 2021, 9:28 a.m., Published: Nov. 9, 2021, midnight
 Vulnerabilities: denial of service, code execution
Affected productsExternal IDs
vendor: treck model: tcp/ip stack
vendor: siemens model: nucleus net
vendor: siemens model: nucleus
db: NVD ids: CVE-2021-31886, CVE-2021-31887

Microsoft discovers macOS "Shrootless" vulnerability, patch now available - Neowin

Related entries in the VARIoT vulnerabilities database: VAR-202108-2056

Trust: 4.75

Fetched: Nov. 23, 2021, 9:28 a.m., Published: Oct. 29, 2021, 3:48 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: macos
db: NVD ids: CVE-2021-30892

Turning Remotes Into Listening Devices | Guardicore

Related entries in the VARIoT vulnerabilities database: VAR-201707-1024

Trust: 5.5

Fetched: Nov. 23, 2021, 9:28 a.m., Published: Sept. 24, 2021, 4:08 p.m.
 Vulnerabilities: encryption issue
Affected productsExternal IDs
vendor: comcast model: xfinity
db: NVD ids: CVE-2017-9498

Consumer IoT: vulnerability disclosure practice “unacceptably low” - Embedded.com

Trust: 3.5

Fetched: Nov. 23, 2021, 9:28 a.m., Published: Nov. 17, 2021, 4:17 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: home
vendor: samsung model: mobile
vendor: samsung model: printers
vendor: samsung model: samsung

Android 12 will include patches for over 160 security vulnerabilities

Trust: 3.0

Fetched: Nov. 23, 2021, 9:28 a.m., Published: Oct. 4, 2021, 7:35 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: pixel
vendor: google model: android

BrakTooth: security researchers reveal 16 serious Bluetooth flaws affecting billions of devices

Trust: 3.0

Fetched: Nov. 23, 2021, 9:28 a.m., Published: Sept. 6, 2021, 8:07 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs