Sign-up

VARIoT news about IoT security

Researchers hack Apple's Find My network to track any Bluetooth device | Macworld

Trust: 3.0

Fetched: Feb. 28, 2025, 9:23 a.m., Published: Feb. 27, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: iphone

Cisco Nexus Vulnerability Let Attackers Inject Malicious Commands

Trust: 5.5

Fetched: Feb. 28, 2025, 9:23 a.m., Published: Feb. 27, 2025, 12:53 p.m.
 Vulnerabilities: command injection, os command injection, service disruption
Affected productsExternal IDs
vendor: cisco model: nx-os
vendor: cisco model: series
vendor: cisco model: nexus
vendor: cisco model: nx-os software
vendor: cisco model: firepower
vendor: cisco model: series switches
vendor: cisco model: nexus 3000
vendor: cisco systems model: nx-os
vendor: cisco systems model: series
vendor: cisco systems model: nexus
vendor: cisco systems model: nx-os software
vendor: cisco systems model: firepower
vendor: cisco systems model: series switches
vendor: cisco systems model: nexus 3000
db: NVD ids: CVE-2025-20161

Leaked ransomware chat logs reveal Black Basta’s targeted CVEs | Cybersecurity Dive

Related entries in the VARIoT vulnerabilities database: VAR-202008-0248

Trust: 4.75

Fetched: Feb. 28, 2025, 9:23 a.m., Published: Feb. 27, 2025, midnight
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: palo model: pan-os
vendor: palo model: networks
vendor: cisco model: netscaler gateway
vendor: citrix model: netscaler
vendor: citrix model: netscaler gateway
vendor: citrix model: netscaler adc
vendor: citrix model: gateway
vendor: palo alto networks model: pan-os
vendor: palo alto networks model: networks
db: NVD ids: CVE-2023-42115, CVE-2023-4966, CVE-2024-1709, CVE-2020-1472, CVE-2024-1708, CVE-2024-3400, CVE-2024-23113, CVE-2024-25600, CVE-2024-21762

CVE-2024-57992 : Kernel Panic Vulnerability in Atmel SAMA5 Wi-Fi Device Driver by Vendor Linux | SecurityVulnerability.io

Trust: 4.25

Fetched: Feb. 28, 2025, 9:22 a.m., Published: Feb. 27, 2025, 2:07 a.m.
 Vulnerabilities: kernel panic
Affected productsExternal IDs
db: NVD ids: CVE-2024-57992

Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications | CISA

Trust: 4.5

Fetched: Feb. 28, 2025, 9:17 a.m., Published: Jan. 31, 2025, midnight
 Vulnerabilities: cross-site request forgery, privilege escalation, code execution...
Affected productsExternal IDs
db: NVD ids: CVE-2025-0283, CVE-2024-9379, CVE-2024-8963, CVE-2024-9381, CVE-2024-8190, CVE-2025-0282, CVE-2024-9380

Cisco Nexus 3000 and 9000 Series Switches Command Injection Vulnerability

Trust: 5.0

Fetched: Feb. 28, 2025, 9:16 a.m., Published: Feb. 26, 2025, 3:52 p.m.
 Vulnerabilities: command injection
Affected productsExternal IDs
vendor: cisco model: nexus 7000
vendor: cisco model: nx-os
vendor: cisco model: nexus 9000
vendor: cisco model: series
vendor: cisco model: nexus
vendor: cisco model: nexus 9000 series
vendor: cisco model: nx-os software
vendor: cisco model: cisco nx-os
vendor: cisco model: series switches
vendor: cisco model: nexus 3000

Find My Network Exploit Turns Any Bluetooth Device Into a Tracker - MacRumors

Trust: 3.0

Fetched: Feb. 28, 2025, 9:16 a.m., Published: Feb. 16, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs

Cisco Nexus 3000 and 9000 Series Switches Health Monitoring Diagnostics Denial of Service Vulnerability

Trust: 4.0

Fetched: Feb. 28, 2025, 9:15 a.m., Published: Feb. 26, 2025, 3:52 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: nexus 7000
vendor: cisco model: nx-os
vendor: cisco model: nexus 9000
vendor: cisco model: series
vendor: cisco model: nexus
vendor: cisco model: nexus 9000 series
vendor: cisco model: nx-os software
vendor: cisco model: cisco nx-os
vendor: cisco model: series switches
vendor: cisco model: nexus 3000

CISA Alert: Vulnerabilities in Dario Health Blood Glucose App Raise Cybersecurity Concerns | Windows Forum

Trust: 4.5

Fetched: Feb. 28, 2025, 9:13 a.m., Published: May 28, 2025, midnight
 Vulnerabilities: session hijacking, cross-site scripting
Affected productsExternal IDs
db: NVD ids: CVE-2025-24843, CVE-2025-20060, CVE-2025-23405, CVE-2025-20049, CVE-2025-24316, CVE-2025-24318, CVE-2025-24849

GRUB2 Flaws Expose Millions of Linux Devices to Exploitation

Trust: 3.75

Fetched: Feb. 28, 2025, 9:13 a.m., Published: Feb. 26, 2025, 10:34 a.m.
 Vulnerabilities: integer overflow, memory corruption, code execution...
Affected productsExternal IDs
db: NVD ids: CVE-2025-0678, CVE-2025-1118, CVE-2025-0685, CVE-2025-0622, CVE-2024-45782, CVE-2025-0686, CVE-2025-0624, CVE-2025-0677, CVE-2024-45774

Weathering the storm: In the midst of a Typhoon

Related entries in the VARIoT vulnerabilities database: VAR-201803-1387

Trust: 4.25

Fetched: Feb. 28, 2025, 9:11 a.m., Published: Feb. 20, 2025, 1 p.m.
 Vulnerabilities: weak password, control bypass, default credentials
Affected productsExternal IDs
vendor: cisco model: cisco ios xr
vendor: cisco model: cisco ios
vendor: cisco model: ios xr
vendor: cisco model: series
vendor: cisco model: nexus
vendor: cisco model: nexus devices
vendor: cisco model: ios xe software
vendor: cisco model: cisco ios xe
vendor: cisco model: ios xe
db: NVD ids: CVE-2018-0171

System BIOS dla komputerów Dell Precision 3540 i Latitude 5400/5500 | Szczegóły sterownika | Dell Polska

Trust: 3.0

Fetched: Feb. 26, 2025, 9:59 a.m., Published: Feb. 26, 3540, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: latitude
vendor: dell model: bios

CYBERSECURITY THREATS - CVE ALERTS

Trust: 3.25

Fetched: Feb. 26, 2025, 9:46 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2023-34034

खतरे में ऐप्पल डिवाइस यूजर्स, चोरी हो सकता है पर्सनल डेटा, सरकार ने किया अलर्ट these apple device in danger cert in discovers critical vulnerabilities, Gadgets Hindi News - Hindustan

Trust: 3.0

Fetched: Feb. 26, 2025, 9:45 a.m., Published: Jan. 29, 2025, 2:50 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: macos

Dell security updates: BIOS and NetWorker vulnerability closed | heise online

Related entries in the VARIoT vulnerabilities database: VAR-202502-2961

Trust: 4.0

Fetched: Feb. 26, 2025, 9:41 a.m., Published: Feb. 18, 2025, 1:40 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios
db: NVD ids: CVE-2025-21103, CVE-2024-52541

Google just fixed a zero-day kernel flaw used by hackers and 47 other vulnerabilities - update your Android phone right now | Tom's Guide

Trust: 5.5

Fetched: Feb. 26, 2025, 9:41 a.m., Published: Feb. 4, 2025, 12:02 a.m.
 Vulnerabilities: privilege escalation, memory corruption
Affected productsExternal IDs
vendor: oneplus model: one
vendor: oneplus model: oneplus
vendor: samsung model: android phone
vendor: samsung model: samsung
vendor: google model: android
vendor: google model: chrome
vendor: google model: pixel
vendor: motorola model: android
vendor: motorola model: motorola
db: NVD ids: CVE-2024-45569, CVE-2024-53104

Router maker Zyxel tells customers to replace vulnerable hardware exploited by hackers | TechCrunch

Trust: 3.0

Fetched: Feb. 26, 2025, 9:40 a.m., Published: Feb. 5, 2025, 10:08 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2024-40890, CVE-2024-40891

System BIOS komputerów Dell OptiPlex 3070 | Szczegóły sterownika | Dell Polska

Trust: 3.0

Fetched: Feb. 26, 2025, 9:39 a.m., Published: Feb. 26, 3070, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: bios
vendor: dell model: optiplex

Types of Cyber Security: Protect Your Business from Cybersecurity Threats

Trust: 4.75

Fetched: Feb. 26, 2025, 9:39 a.m., Published: Jan. 29, 2025, 5:40 a.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: essential model: phone

Apple Patches iOS Zero-Day Vulnerabilities

Trust: 4.75

Fetched: Feb. 26, 2025, 9:38 a.m., Published: Jan. 29, 2025, 3:41 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: tvos
vendor: apple model: macos
vendor: apple model: watchos