Sign-up

VARIoT news about IoT security

Create device limit restrictions - Microsoft Intune | Microsoft Learn

Trust: 3.0

Fetched: March 23, 2025, 9:37 a.m., Published: Jan. 27, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: macos

ZDI-CAN-25373 Windows Shortcut Exploit Abused as Zero-Day in Widespread APT Campaigns | Trend Micro (US)

Trust: 3.5

Fetched: March 23, 2025, 9:36 a.m., Published: March 18, 2025, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: trend model: security
vendor: trend model: deep security
vendor: trend micro model: security
vendor: trend micro model: deep security
vendor: trendmicro model: security
vendor: trendmicro model: deep security

System BIOS w wersji R2 do komputerów Alienware m16 | Szczegóły sterownika | Dell Polska

Trust: 3.25

Fetched: March 23, 2025, 9:33 a.m., Published: March 11, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios

System BIOS komputerów Dell Inspiron 14 Plus 7440 / 16 Plus 7640 | Szczegóły sterownika | Dell Polska

Trust: 3.25

Fetched: March 23, 2025, 9:32 a.m., Published: March 14, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios

System BIOS komputerów Dell Latitude 5310 i 5310 2 w 1 | Szczegóły sterownika | Dell Polska

Trust: 3.0

Fetched: March 23, 2025, 9:30 a.m., Published: March 23, 5310, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios
vendor: dell model: latitude

Motoring vulnerabilities

Trust: 3.0

Fetched: March 23, 2025, 9:30 a.m., Published: May 23, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cherokee model: cherokee

CVE-2025-23416 - Apache Device Path Traversal Vulnerability | Kenya Education Network

Trust: 4.25

Fetched: March 23, 2025, 9:29 a.m., Published: March 5, 2025, 7:27 p.m.
 Vulnerabilities: path traversal
Affected productsExternal IDs
db: NVD ids: CVE-2025-23416

System BIOS komputerów Dell Inspiron 14 5435/16 5635 oraz Vostro 16 5635 | Szczegóły sterownika | Dell Polska

Trust: 3.25

Fetched: March 23, 2025, 9:29 a.m., Published: March 5, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios

U.S. CISA adds Microsoft Power Pages flaw to its Known Exploited Vulnerabilities catalog

Trust: 3.75

Fetched: March 23, 2025, 9:29 a.m., Published: Feb. 23, 2025, 3:07 p.m.
 Vulnerabilities: privilege escalation, improper access control, access control flaw
Affected productsExternal IDs
db: NVD ids: CVE-2025-24989

System BIOS dla komputera Dell Embedded Box PC 3000 | Szczegóły sterownika | Dell Polska

Trust: 3.0

Fetched: March 23, 2025, 9:28 a.m., Published: March 23, 3000, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: embedded box pc
vendor: dell model: bios

System BIOS komputera Dell Latitude 7350 z odłączanym ekranem | Szczegóły sterownika | Dell Polska

Trust: 3.0

Fetched: March 23, 2025, 9:26 a.m., Published: March 23, 7350, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios
vendor: dell model: latitude
vendor: dell model: latitude 7350

Google Chrome Vulnerability: CVE-2025-24201 Out of bounds write in GPU on Mac

Trust: 3.75

Fetched: March 23, 2025, 9:26 a.m., Published: April 9, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: chrome
vendor: google model: google chrome
db: NVD ids: CVE-2025-24201

System BIOS w wersji R5 do komputerów Alienware m15 | Szczegóły sterownika | Dell Polska

Trust: 3.25

Fetched: March 23, 2025, 9:26 a.m., Published: March 5, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios

Akira Ransomware: Webcam Exploitation Threatens Windows Users | Windows Forum

Trust: 3.75

Fetched: March 23, 2025, 9:25 a.m., Published: May 23, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: trend model: antivirus
vendor: trend model: security
db: NVD ids: CVE-2024-40711

Cato CTRL: Ballista - New IoT Botnet Targeting Thousands of TP-Link Archer Routers | Cato Networks

Related entries in the VARIoT vulnerabilities database: VAR-202303-1268

Trust: 4.5

Fetched: March 23, 2025, 9:24 a.m., Published: March 11, 2025, 9:46 a.m.
 Vulnerabilities: code execution, denial of service, command execution
Affected productsExternal IDs
vendor: tp-link model: routers
db: NVD ids: CVE-2023-1389

PHP RCE Vulnerability Actively Exploited in Wild to Attack Windows-based Systems

Trust: 4.0

Fetched: March 23, 2025, 9:23 a.m., Published: March 19, 2025, 12:06 p.m.
 Vulnerabilities: command execution
Affected productsExternal IDs
db: NVD ids: CVE-2024-4577

Cisco Nexus 3000 and 9000 Series Switches Health Monitoring Diagnostics Denial of Service Vulnerability

Trust: 4.0

Fetched: March 23, 2025, 9:22 a.m., Published: Feb. 26, 2025, 3:52 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: series switches
vendor: cisco model: nexus 9000
vendor: cisco model: nx-os
vendor: cisco model: series
vendor: cisco model: cisco nx-os
vendor: cisco model: nexus
vendor: cisco model: nx-os software
vendor: cisco model: nexus 7000
vendor: cisco model: nexus 3000
vendor: cisco model: nexus 9000 series

Update Canonical Ubuntu Server: USN-7353-1: PlantUML vulnerability

Trust: 4.25

Fetched: March 23, 2025, 9:22 a.m., Published: Jan. 23, 7353, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: canonical model: ubuntu

Protect Your Smart Devices from IoT Vulnerabilities

Trust: 3.0

Fetched: March 23, 2025, 9:21 a.m., Published: March 9, 2025, midnight
 Vulnerabilities: default password
Affected productsExternal IDs

Threat Actors Exploiting Chrome DLL Side-Loading Vulnerability to Execute Malware

Trust: 3.75

Fetched: March 23, 2025, 9:20 a.m., Published: March 19, 2025, 12:16 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: google model: chrome
vendor: google model: google chrome