Sign-up

VARIoT news about IoT security

New BrakTooth Flaws Leave Millions of Bluetooth-enabled Devices Vulnerable

Trust: 4.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 2, 2021, 12:29 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-28139

Critical ThroughTek SDK Bug Could Let Attackers Spy On Millions of IoT Devices

Related entries in the VARIoT vulnerabilities database: VAR-202106-1962

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 18, 2021, 3:48 p.m.
 Vulnerabilities: improper access control, code execution, access control flaw
Affected productsExternal IDs
db: NVD ids: CVE-2021-28372, CVE-2021-32934

IoT: Device Vulnerability & Security Concerns in Wearable Devices

Trust: 3.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 20, 2021, midnight
 Vulnerabilities: data injection, brute force attack, injection attack
Affected productsExternal IDs

12-Year-Old Router Vulnerability Discovered Affecting Millions of Devices Exposing Serious Supply Chain Risks - CPO Magazine

Related entries in the VARIoT vulnerabilities database: VAR-202104-0768

Trust: 5.25

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 12, 2021, 2:46 a.m.
 Vulnerabilities: authentication bypass, path traversal
Affected productsExternal IDs
vendor: buffalo model: router
vendor: serve model: serve
db: NVD ids: CVE-2021-20090

New BrakTooth Flaws Leave Millions of Bluetooth-enabled Devices Vulnerable - LA Times Now

Trust: 4.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 2, 2021, 4 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-28139

Microsoft finds new macOS vulnerability, Shrootless, that could bypass System Integrity Protection - 247 TECH

Related entries in the VARIoT vulnerabilities database: VAR-202108-2056

Trust: 3.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: macos
db: NVD ids: CVE-2021-30892

Medtronic Recalls Insulin Pump Controller Due to Hacking Risk

Trust: 3.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 6, 2021, 9 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: medtronic model: paradigm
vendor: medtronic model: minimed 508
vendor: check point model: check point

device vulnerability - SPLICE

Trust: 3.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: June 2, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: wireshark model: wireshark

Getting Potential Device Vulnerability Overview - Enterprise Mobility Manager 2.1.0 - WSO2 Documentation

Trust: 3.25

Fetched: Nov. 4, 2021, 1:02 p.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: wso2 model: enterprise mobility manager

IoT device security implications for the future

Trust: 3.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 20, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs

Medical Device Vulnerability Alert Issued - HealthcareInfoSecurity

Trust: 3.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Dec. 18, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs

Millions of Bluetooth-enabled devices vulnerable | Voice of CISO

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 3, 2021, 12:17 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-28139

Is Your Medical Device Vulnerability Management in Critical Condition

Trust: 3.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 21, 2021, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs

IT Security Standard: Vulnerability Assessment and Management - Information Security - Cal Poly, San Luis Obispo

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Dec. 5, 2021, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: serve model: serve

Bluetooth Devices Vulnerable to Attacks - ISSSource

Trust: 3.5

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Sept. 28, 2021, 8:54 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: samsung model: samsung
vendor: asus model: asus

Critical bug impacting millions of IoT devices lets hackers spy on you

Related entries in the VARIoT vulnerabilities database: VAR-202106-1962

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 17, 2021, midnight
 Vulnerabilities: device impersonation
Affected productsExternal IDs
db: NVD ids: CVE-2021-28372, CVE-2021-32934

Apple iOS < 15.0.2 Multiple Vulnerabilities (HT212846) | Tenable®

Related entries in the VARIoT vulnerabilities database: VAR-202108-2053, VAR-202108-2054, VAR-202108-2057

Trust: 3.25

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Oct. 14, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-30896, CVE-2021-30895, CVE-2021-30883
db: APPLE ids: APPLE-SA-2021-10-11-1

Multiple Vulnerabilities Affecting Bluetooth Devices

Related entries in the VARIoT vulnerabilities database: VAR-202109-0564

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 31, 2021, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-34145, CVE-2021-34144, CVE-2021-31611, CVE-2021-34146, CVE-2021-31612, CVE-2021-28136, CVE-2021-28139, CVE-2021-34148, CVE-2021-31610, CVE-2021-28155, CVE-2021-31785, CVE-2021-34150, CVE-2021-34143, CVE-2021-31717, CVE-2021-31613, CVE-2021-34149, CVE-2021-31609, CVE-2021-34147, CVE-2021-28135, CVE-2021-31786

Millions of IoT Devices Using ‘ThroughTek Kalay Network’ Vulnerable to Eavesdropping

Trust: 4.0

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 18, 2021, 9:54 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-28372

Multiple Vulnerabilities Affecting Bluetooth Devices

Related entries in the VARIoT vulnerabilities database: VAR-202109-0564

Trust: 4.75

Fetched: Nov. 4, 2021, 1:02 p.m., Published: Aug. 31, 2021, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-34145, CVE-2021-34144, CVE-2021-31611, CVE-2021-34146, CVE-2021-31612, CVE-2021-28136, CVE-2021-28139, CVE-2021-34148, CVE-2021-31610, CVE-2021-28155, CVE-2021-31785, CVE-2021-34150, CVE-2021-34143, CVE-2021-31717, CVE-2021-31613, CVE-2021-34149, CVE-2021-31609, CVE-2021-34147, CVE-2021-28135, CVE-2021-31786