Sign-up

VARIoT news about IoT security

Cisco Unified CM Vulnerability Allows Remote Attacker to Login As Root User

Trust: 4.75

Fetched: July 6, 2025, 12:06 p.m., Published: July 3, 2025, 8:12 a.m.
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
vendor: cisco model: unified communications
vendor: cisco model: cisco unified communications manager
vendor: cisco model: unified communications manager session management edition
vendor: cisco model: unified communications manager
db: NVD ids: CVE-2025-20309

20 Best Endpoint Management Tools - 2025

Trust: 3.5

Fetched: July 6, 2025, 12:05 p.m., Published: July 1, 2025, 7:04 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: tvos
vendor: apple model: macos
vendor: symantec model: endpoint protection
vendor: symantec model: antivirus
vendor: symantec model: data loss prevention

CVE-2025-30131: Unauthenticated File Upload Vulnerability in IROAD Dashcam FX2 Devices - Cybersecurity Exploit Tracker by Ameeba

Trust: 5.0

Fetched: July 6, 2025, noon, Published: July 2, 2025, 7:06 p.m.
 Vulnerabilities: file upload vulnerability
Affected productsExternal IDs
db: NVD ids: CVE-2025-30131

"CitrixBleed 2" Vulnerability PoC Released - Warns of Potential Widespread Exploitation

Trust: 5.5

Fetched: July 6, 2025, 11:54 a.m., Published: July 5, 2025, 1:39 p.m.
 Vulnerabilities: memory leak, session hijacking, authentication bypass
Affected productsExternal IDs
vendor: comcast model: xfinity
vendor: citrix model: netscaler
vendor: citrix model: netscaler gateway
vendor: citrix model: gateway
vendor: citrix model: netscaler adc
vendor: xfinity model: gateway
db: NVD ids: CVE-2023-4966, CVE-2025-5777

What is the HIKVISION ApplyCT Vulnerability and How Does it Impact Surveillance Devices? - Web Asha Technologies

Trust: 5.25

Fetched: July 6, 2025, 11:53 a.m., Published: July 10, 2025, midnight
 Vulnerabilities: command execution, code execution
Affected productsExternal IDs
vendor: hikvision model: ip cameras
vendor: hikvision model: hikvision
db: NVD ids: CVE-2025-34067

Critical HIKVISION ApplyCT Vulnerability Exposes Devices to Code Execution Attacks

Trust: 5.75

Fetched: July 6, 2025, 11:53 a.m., Published: July 4, 2025, 10:08 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: hikvision model: hikvision
db: NVD ids: CVE-2025-34067

ترجمة الصور - أجهزة Android - مساعدة Google Translate

Trust: 3.25

Fetched: July 6, 2025, 11:42 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

ترجمة نص في التطبيقات الأخرى - أجهزة Android - مساعدة Google Translate

Trust: 3.5

Fetched: July 6, 2025, 11:42 a.m., Published: July 10, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

ترجمة كلمات مكتوبة - أجهزة Android - مساعدة Google Translate

Trust: 3.5

Fetched: July 6, 2025, 11:41 a.m., Published: July 6, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

ترجمة المستندات والمواقع الإلكترونية - أجهزة Android - مساعدة Google Translate

Trust: 3.5

Fetched: July 6, 2025, 11:41 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Download & use Google Translate - Android - Google Translate Help

Trust: 3.0

Fetched: July 6, 2025, 11:41 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

ترجمة كلمات مكتوبة - أجهزة الكمبيوتر - مساعدة Google Translate

Trust: 3.0

Fetched: July 6, 2025, 11:40 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: chrome

JOHN HOWIE STEAK RESTAURANT - Updated July 2025 - 2238 Photos & 1741 Reviews - 11111 NE 8th St, Bellevue, Washington - Steakhouses - Restaurant Reviews - Phone Number - Yelp

Trust: 3.25

Fetched: July 6, 2025, 11:25 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: essential model: phone

Scottish Power - New Smart Meters IHD & Comms Hub Problems - Sigh...... - MoneySavingExpert Forum

Trust: 3.0

Fetched: July 6, 2025, 10:44 a.m., Published: March 6, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs

Scottish power incorrect bills? - MoneySavingExpert Forum

Trust: 3.0

Fetched: July 6, 2025, 10:44 a.m., Published: Nov. 13, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs

Sign up for YouTube Premium or YouTube Music Premium memberships - Computer - YouTube Help

Trust: 3.0

Fetched: July 6, 2025, 10:41 a.m., Published: May 6, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: home
vendor: google model: chromecast audio
vendor: google model: chromecast
vendor: google model: google home

D-Link DCS-5020L Buffer Overflow Vulnerability (May 2025) (CVE-2025-5215) - Vulnerability & Exploit Database

Related entries in the VARIoT vulnerabilities database: VAR-202505-2067

Trust: 6.0

Fetched: July 4, 2025, 9:22 a.m., Published: May 4, 2025, midnight
 Vulnerabilities: buffer overflow
Affected productsExternal IDs
vendor: d-link model: dcs-5020l
db: NVD ids: CVE-2025-5215

D-Link DIR-859 Multiple Vulnerabilities (2019 - 2024) (CVE-2019-17508, CVE-2020-25506, CVE-2022-25106...) - Vulnerability & Exploit Database

Related entries in the VARIoT vulnerabilities database: VAR-202203-0955, VAR-201910-0719, VAR-202102-0290

Trust: 4.0

Fetched: July 4, 2025, 9:21 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: d-link model: dir-859
db: NVD ids: CVE-2022-25106, CVE-2019-17508, CVE-2020-25506

Xiaomi's Interoperability App Vulnerability Let Hackers Gain Unauthorized Access to the Victim's Device

Trust: 4.75

Fetched: July 4, 2025, 9:20 a.m., Published: June 24, 2025, 12:02 p.m.
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
db: NVD ids: CVE-2024-45347

D-Link Multiple DNS NAS Devices Multiple Vulnerabilities (2024 - 2025) (CVE-2024-10914, CVE-2024-10915, CVE-2024-10916...) - Vulnerability & Exploit Database

Related entries in the VARIoT vulnerabilities database: VAR-202411-0375, VAR-202411-0293, VAR-202411-0368

Trust: 3.0

Fetched: July 4, 2025, 9:20 a.m., Published: July 6, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2024-10916, CVE-2024-10914, CVE-2024-10915