VARIoT news about IoT security

Trust: 3.0

Fetched: Aug. 22, 2025, 9:43 a.m., Published: Aug. 1, 2025, midnight
Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-5095

Trust: 4.5

Fetched: Aug. 22, 2025, 9:42 a.m., Published: Aug. 22, 2025, 5:34 a.m.
Vulnerabilities: denial of service, request smuggling attack
Affected productsExternal IDs
vendor: alsa model: alsa
db: NVD ids: CVE-2025-21783, CVE-2025-21782, CVE-2025-21773, CVE-2025-6442, CVE-2025-21864, CVE-2024-57834, CVE-2024-54456, CVE-2025-38043, CVE-2025-38004, CVE-2025-21856, CVE-2025-21823, CVE-2025-21766, CVE-2025-21762, CVE-2025-21867, CVE-2025-21869, CVE-2025-21760, CVE-2025-21871, CVE-2025-38031, CVE-2025-21861, CVE-2025-21761, CVE-2025-38075, CVE-2025-38044, CVE-2025-21746, CVE-2024-50073, CVE-2025-21790, CVE-2025-38078, CVE-2024-49950, CVE-2025-21853, CVE-2025-8194, CVE-2025-21866, CVE-2025-21795, CVE-2025-21870, CVE-2024-58088, CVE-2025-21706, CVE-2025-50420, CVE-2025-38052, CVE-2025-21792, CVE-2025-21868, CVE-2025-21767, CVE-2025-21844, CVE-2024-58086, CVE-2025-21772, CVE-2025-21855, CVE-2025-38051, CVE-2025-21791, CVE-2025-21836, CVE-2025-21858, CVE-2024-58093, CVE-2025-38058, CVE-2025-21862, CVE-2024-58020, CVE-2023-52975, CVE-2025-21821, CVE-2025-21796, CVE-2025-21775, CVE-2025-38077, CVE-2025-38065, CVE-2025-21785, CVE-2025-21854, CVE-2025-21847, CVE-2025-21759, CVE-2025-21776, CVE-2025-38072, CVE-2025-21848, CVE-2025-38048, CVE-2025-21763, CVE-2025-21764, CVE-2025-21704, CVE-2025-38079, CVE-2025-21779, CVE-2025-21758, CVE-2025-21765, CVE-2023-52757, CVE-2025-21768, CVE-2025-21835, CVE-2025-21846, CVE-2025-21859, CVE-2025-21787, CVE-2025-6069, CVE-2025-21712, CVE-2025-21781, CVE-2025-21863, CVE-2024-57977, CVE-2025-21839, CVE-2025-38066, CVE-2025-38037, CVE-2025-37797, CVE-2025-38034, CVE-2024-38541, CVE-2025-38061, CVE-2025-38083, CVE-2024-52559, CVE-2025-21780, CVE-2024-54458, CVE-2025-38035, CVE-2025-21857, CVE-2025-38003, CVE-2025-21786, CVE-2025-21784, CVE-2025-21838, CVE-2025-38068, CVE-2025-21793
Related entries in the VARIoT vulnerabilities database: VAR-201803-1387

Trust: 4.75

Fetched: Aug. 22, 2025, 9:41 a.m., Published: Aug. 21, 2025, noon
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: cisco model: ios xe
vendor: cisco model: routers
vendor: cisco model: cisco ios
db: NVD ids: CVE-2018-0171

Trust: 4.75

Fetched: Aug. 22, 2025, 9:39 a.m., Published: Aug. 21, 2025, 10:07 p.m.
Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: apple model: software update
vendor: apple model: macos
db: NVD ids: CVE-2025-43300

Trust: 4.25

Fetched: Aug. 22, 2025, 9:39 a.m., Published: Aug. 20, 2025, midnight
Vulnerabilities: authentication bypass, code execution
Affected productsExternal IDs
vendor: citrix model: netscaler
vendor: citrix model: gateway
vendor: citrix model: netscaler gateway
db: NVD ids: CVE-2025-6543, CVE-2025-5777
Related entries in the VARIoT vulnerabilities database: VAR-201704-1556, VAR-202206-0056, VAR-201505-0274, VAR-202201-1001

Trust: 5.5

Fetched: Aug. 22, 2025, 9:38 a.m., Published: Aug. 22, 2025, 2:48 a.m.
Vulnerabilities: file upload vulnerability, memory overwrite, code execution...
Affected productsExternal IDs
vendor: realtek model: realtek sdk
vendor: zyxel model: emg2926
vendor: samsung model: mobile devices
vendor: samsung model: mobile
vendor: samsung model: samsung mobile
vendor: samsung model: samsung
vendor: apple model: ipad
vendor: apple model: tvos
vendor: apple model: iphone
vendor: apple model: itunes
vendor: apple model: webkit
vendor: apple model: watchos
vendor: apple model: ipad air
vendor: apple model: safari
vendor: apple model: macos
db: NVD ids: CVE-2021-3129, CVE-2017-6884, CVE-2022-31459, CVE-2014-8361, CVE-2022-22265, CVE-2025-24201, CVE-2025-43300
Related entries in the VARIoT vulnerabilities database: VAR-202508-0152

Trust: 4.75

Fetched: Aug. 22, 2025, 9:38 a.m., Published: Aug. 22, 2025, 7:32 a.m.
Vulnerabilities: command injection
Affected productsExternal IDs
vendor: wibu model: codemeter
vendor: siemens model: desigo cc
db: NVD ids: CVE-2025-53520, CVE-2025-47872, CVE-2025-40758, CVE-2025-7769, CVE-2025-47809, CVE-2025-52586, CVE-2025-46414, CVE-2025-7770, CVE-2025-7768
Related entries in the VARIoT vulnerabilities database: VAR-201803-1387

Trust: 3.75

Fetched: Aug. 22, 2025, 9:37 a.m., Published: Aug. 21, 2025, 10:30 a.m.
Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: ios xe software
vendor: cisco model: cisco ios xe
vendor: cisco model: ios software
vendor: cisco model: ios xe
vendor: cisco model: cisco ios
db: NVD ids: CVE-2018-0171

Trust: 5.0

Fetched: Aug. 22, 2025, 9:37 a.m., Published: Aug. 20, 2025, 4:43 p.m.
Vulnerabilities: file upload vulnerability
Affected productsExternal IDs
vendor: cisco model: identity services engine
vendor: cisco model: cisco identity services engine

Trust: 4.75

Fetched: Aug. 22, 2025, 9:35 a.m., Published: -
Vulnerabilities: file download vulnerability
Affected productsExternal IDs
vendor: cisco model: prime infrastructure
vendor: cisco model: evolved programmable network manager
vendor: cisco model: cisco evolved programmable network manager
db: NVD ids: CVE-2025-20269

Trust: 4.75

Fetched: Aug. 22, 2025, 9:35 a.m., Published: Aug. 21, 2025, 2:14 p.m.
Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: apple model: ipad air
vendor: apple model: ipad
vendor: apple model: macos
vendor: apple model: iphone

Trust: 3.0

Fetched: Aug. 22, 2025, 9:35 a.m., Published: Aug. 22, 2017, midnight
Vulnerabilities: sql injection
Affected productsExternal IDs
db: NVD ids: CVE-2025-53727, CVE-2025-49759, CVE-2025-49758, CVE-2025-24999

Trust: 4.0

Fetched: Aug. 22, 2025, 9:34 a.m., Published: Aug. 22, 2017, midnight
Vulnerabilities: sql injection
Affected productsExternal IDs
db: NVD ids: CVE-2025-53727, CVE-2025-49759, CVE-2025-49758, CVE-2025-24999

Trust: 5.0

Fetched: Aug. 22, 2025, 9:34 a.m., Published: Aug. 20, 2025, 4:43 p.m.
Vulnerabilities: file upload vulnerability
Affected productsExternal IDs
vendor: cisco model: identity services engine
vendor: cisco model: cisco identity services engine

Trust: 3.75

Fetched: Aug. 22, 2025, 9:33 a.m., Published: Aug. 13, 2025, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2024-48336

Trust: 3.0

Fetched: Aug. 22, 2025, 9:33 a.m., Published: Nov. 30, 0001, midnight
Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-43986

Trust: 4.75

Fetched: Aug. 22, 2025, 9:32 a.m., Published: Aug. 4, 2025, 6:02 a.m.
Vulnerabilities: code execution, file execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-6000

Trust: 3.75

Fetched: Aug. 22, 2025, 9:31 a.m., Published: Aug. 22, 2020, midnight
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: citrix model: application delivery controller

Trust: 4.75

Fetched: Aug. 22, 2025, 9:30 a.m., Published: June 18, 2002, midnight
Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: apple model: ipad air
vendor: apple model: ipad
vendor: apple model: macos
vendor: apple model: iphone

Trust: 5.0

Fetched: Aug. 22, 2025, 9:30 a.m., Published: Aug. 21, 2025, 9:38 a.m.
Vulnerabilities: file upload vulnerability
Affected productsExternal IDs
vendor: cisco model: identity services engine
vendor: cisco model: cisco identity services engine
db: NVD ids: CVE-2025-20131