Sign-up

VARIoT news about IoT security

Latest news

The news are found with our scripts for filtering search results.
Additional information about vulnerabilities, affected products and external identifiers are obtained with NLP and custom filters from found news.

Siemens RUGGEDCOM APE1808 Devices | CISA

Trust: 5.5

Fetched: March 15, 2026, 9:36 a.m., Published: March 9, 2026, midnight
 Vulnerabilities: format string vulnerability, authentication bypass
Affected productsExternal IDs
vendor: siemens model: ruggedcom
db: NVD ids: CVE-2026-24858, CVE-2025-62439, CVE-2025-64157, CVE-2025-55018

How a Security Vulnerability Exploit Bypasses Encryption

Trust: 5.5

Fetched: March 15, 2026, 9:35 a.m., Published: March 10, 2026, midnight
 Vulnerabilities: integer overflow, memory corruption, privilege escalation
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2024-43047, CVE-2026-21385

This Android vulnerability can break your lock screen in under 60 seconds | Malwarebytes

Trust: 3.0

Fetched: March 15, 2026, 9:30 a.m., Published: March 12, 2026, 1:13 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2026-20435

Critical Microsoft Office Vulnerability Enables Remote Code Execution Attacks

Trust: 6.0

Fetched: March 15, 2026, 9:30 a.m., Published: March 12, 2026, 7:33 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2026-26110

Cisco Secure Firewall Threat Defense Software SSL Decryption Policy Denial of Service Vulnerability

Trust: 5.0

Fetched: March 15, 2026, 9:29 a.m., Published: March 4, 2026, 4:14 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: asa software

Ledger's Warning: Critical Firmware Flaw Threatens Mobile Crypto Security | Cryptodamus

Trust: 3.5

Fetched: March 15, 2026, 9:28 a.m., Published: March 11, 2026, 2:39 p.m.
 Vulnerabilities: code injection
Affected productsExternal IDs
vendor: google model: android
vendor: trend model: security
vendor: essential model: phone

CVE-2026-20118 | TenableĀ®

Trust: 5.0

Fetched: March 15, 2026, 9:26 a.m., Published: March 15, 5500, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: ios xr software
vendor: cisco model: cisco ios xr
vendor: cisco model: routers
vendor: cisco model: series
vendor: cisco model: cisco ios
vendor: cisco model: network convergence system
vendor: cisco model: ios xr
db: NVD ids: CVE-2026-20118

Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access

Related entries in the VARIoT vulnerabilities database: VAR-202602-3258, VAR-202209-1914

Trust: 4.5

Fetched: March 15, 2026, 9:22 a.m., Published: Feb. 26, 2026, 6:13 a.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: cisco model: sd-wan
vendor: cisco model: wan manager
vendor: cisco model: cisco sd-wan
vendor: cisco model: catalyst
vendor: trend model: security
db: NVD ids: CVE-2026-20127, CVE-2022-20775

Cisco Secure Firewall Adaptive Security Appliance Software SSH Partial Private Key Authentication Bypass Vulnerability

Trust: 4.0

Fetched: March 13, 2026, 10:16 a.m., Published: March 4, 2026, 4:14 p.m.
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
vendor: cisco model: adaptive security appliance
vendor: cisco model: asa software
vendor: cisco model: adaptive security appliance software

PT SWARM - Positive Technologies Offensive Team

Trust: 4.0

Fetched: March 13, 2026, 10:16 a.m., Published: March 10, 2026, midnight
 Vulnerabilities: request forgery, denial of service
Affected productsExternal IDs

ERROR: The request could not be satisfied

Trust: 3.25

Fetched: March 13, 2026, 10:13 a.m., Published: -
 Vulnerabilities: configuration error
Affected productsExternal IDs

CISA Warns Qualcomm Chipsets Memory Corruption Vulnerability Is Actively Exploited in Attacks

Trust: 6.0

Fetched: March 13, 2026, 10:12 a.m., Published: March 4, 2026, 12:59 p.m.
 Vulnerabilities: integer overflow, memory corruption, improper validation...
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2026-21385

Pixel Update Bulletin-March 2026 | Android Open Source Project

Trust: 4.25

Fetched: March 13, 2026, 10:08 a.m., Published: March 13, 2026, midnight
 Vulnerabilities: code execution, information disclosure, denial of service
Affected productsExternal IDs
vendor: google model: pixel
vendor: google model: android
vendor: google model: wifi
db: NVD ids: CVE-2026-0117, CVE-2026-0108, CVE-2026-0113, CVE-2026-0109, CVE-2026-0114, CVE-2026-0120, CVE-2026-0122, CVE-2026-0124, CVE-2026-0110, CVE-2026-0107, CVE-2026-0123, CVE-2026-0115, CVE-2026-0121, CVE-2026-0112, CVE-2026-0116, CVE-2026-0111, CVE-2026-0119, CVE-2026-0118, CVE-2025-48611, CVE-2025-36920

SSA-126399

Trust: 4.25

Fetched: March 13, 2026, 10:06 a.m., Published: March 1, 2026, midnight
 Vulnerabilities: improper access control
Affected productsExternal IDs
db: NVD ids: CVE-2025-27769

Android Zero Day, Cisco Firewall Root Access Flaw, and the Coruna iPhone Exploit Chain

Trust: 4.5

Fetched: March 13, 2026, 10:05 a.m., Published: March 3, 2026, midnight
 Vulnerabilities: code execution, integer overflow, privilege escalation...
Affected productsExternal IDs
vendor: hikvision model: hikvision
vendor: google model: android
db: NVD ids: CVE-2026-3102, CVE-2026-21385

SecureBoot Bypass Vulnerability in Insyde H2O - UEFI Firmware Threat - UBOS

Trust: 3.5

Fetched: March 13, 2026, 10:04 a.m., Published: Feb. 26, 2026, 11:48 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: lenovo model: updates
vendor: lenovo model: bios
vendor: lenovo model: system
vendor: dell model: bios

Ceragon Siklu MultiHaul and EtherHaul Vulnerability (CVE-2025-57176)

Trust: 4.0

Fetched: March 13, 2026, 10:03 a.m., Published: March 13, 2026, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: siklu model: etherhaul
db: NVD ids: CVE-2025-57176

CVE-2025-44650: Denial of Service Vulnerability in Netgear R7000 and EAX80 - Ameeba Exploit Tracker

Related entries in the VARIoT vulnerabilities database: VAR-202507-3140

Trust: 6.0

Fetched: March 13, 2026, 10:03 a.m., Published: Nov. 30, 0001, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: netgear model: r7000
db: NVD ids: CVE-2025-44650

Get Root Privileges on Xiaomi Without Bootloader Unlocking! - DroidWin

Trust: 4.75

Fetched: March 13, 2026, 10:01 a.m., Published: March 10, 2026, 10:08 a.m.
 Vulnerabilities: parameter injection
Affected productsExternal IDs
vendor: xiaomi model: miui

iOS 16.7.15 Released for Older iPhones: Security Fix You Should Instal

Trust: 3.0

Fetched: March 13, 2026, 9:58 a.m., Published: July 16, 2015, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: webkit
vendor: apple model: software update
vendor: apple model: iphone
vendor: apple model: safari
vendor: apple model: ipad