Sign-up

VARIoT news about IoT security

CVE-2025-39871 - dmaengine: idxd: Remove improper idxd_free - SecAlerts

Trust: 4.0

Fetched: Sept. 23, 2025, 9:37 a.m., Published: -
 Vulnerabilities: memory corruption
Affected productsExternal IDs
db: NVD ids: CVE-2025-39871

Is Your Business Network Exposed by the WatchGuard Firebox Flaw (CVE-2025-9242)? - PUPUWEB

Trust: 5.5

Fetched: Sept. 23, 2025, 9:36 a.m., Published: Sept. 21, 2025, 3:34 a.m.
 Vulnerabilities: code execution, system crash
Affected productsExternal IDs
vendor: watchguard model: fireware
vendor: watchguard model: firebox
db: NVD ids: CVE-2025-9242

Samsung Security Update Fixes CVE-2025-21043 Zero-Day

Trust: 5.25

Fetched: Sept. 23, 2025, 9:36 a.m., Published: Sept. 16, 2025, 3:27 p.m.
 Vulnerabilities: privilege escalation, code execution
Affected productsExternal IDs
vendor: samsung model: samsung
vendor: samsung model: samsung galaxy
vendor: samsung model: galaxy
vendor: samsung model: mobile devices
vendor: samsung model: mobile
vendor: google model: android
db: NVD ids: CVE-2025-48543, CVE-2025-21043, CVE-2025-38352

CVE-2025-57174: Persistent Vulnerability in Siklu Communications Etherhaul Devices Due to Hardcoded AES Encryption Keys - Cybersecurity Exploit Tracker by Ameeba

Trust: 4.0

Fetched: Sept. 23, 2025, 9:35 a.m., Published: Nov. 30, 0001, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: siklu model: etherhaul
db: NVD ids: CVE-2025-57174

CVE-2025-57577: Remote Code Execution Vulnerability in H3C Device R365V300R004 - Cybersecurity Exploit Tracker by Ameeba

Trust: 4.75

Fetched: Sept. 23, 2025, 9:34 a.m., Published: Nov. 30, 0001, midnight
 Vulnerabilities: default credentials, default password, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-57577

CVE-2025-57579: Critical Vulnerability in TOTOLINK Wi-Fi 6 Router Series - Cybersecurity Exploit Tracker by Ameeba

Trust: 5.0

Fetched: Sept. 23, 2025, 9:34 a.m., Published: Nov. 30, 0001, midnight
 Vulnerabilities: default password
Affected productsExternal IDs
db: NVD ids: CVE-2025-57579

CVE-2025-39871 : Use-After-Free Vulnerability in Linux Kernel Affecting Device Management

Trust: 4.25

Fetched: Sept. 23, 2025, 9:31 a.m., Published: Sept. 23, 2025, 6 a.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
db: NVD ids: CVE-2025-39871

WhatsApp Releases Security Patch for Linked Device Vulnerability - Modernizing Tech

Trust: 3.0

Fetched: Sept. 23, 2025, 9:29 a.m., Published: Aug. 30, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-43300, CVE-2025-55177

Samsung fixes Android zero-day hitting Galaxy devices

Trust: 5.5

Fetched: Sept. 23, 2025, 9:27 a.m., Published: Sept. 19, 2025, 6:10 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: macos
vendor: samsung model: samsung
vendor: samsung model: galaxy
vendor: samsung model: samsung galaxy
db: NVD ids: CVE-2024-7399, CVE-2025-21043, CVE-2025-43300, CVE-2025-55177

ERROR: The request could not be satisfied

Trust: 3.25

Fetched: Sept. 21, 2025, 9:31 a.m., Published: -
 Vulnerabilities: configuration error
Affected productsExternal IDs

Flipkart Big Billion Days 2025 Dates (23rd Sep 2025) & Offers List: 90% Off Festive IPhone Deals + Axis & ICICI Bank Cards Discount - Wb Update - Is Your One-stop Destination

Trust: 3.0

Fetched: Sept. 21, 2025, 9:29 a.m., Published: Sept. 14, 2025, 4:03 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: axis model: axis

Find Hub

Trust: 3.25

Fetched: Sept. 21, 2025, 9:17 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: hub model: hub

WhatsApp, Apple warn of highly targeted attacks with zero-day vulnerability | The Record from Recorded Future News

Trust: 3.75

Fetched: Sept. 19, 2025, 9:57 a.m., Published: Sept. 2, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: macos
db: NVD ids: CVE-2025-55177, CVE-2025-43300

Siemens Apogee PXC and Talon TC Devices - CloudCentric

Trust: 4.5

Fetched: Sept. 19, 2025, 9:57 a.m., Published: Sept. 11, 2025, 5:30 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: siemens model: apogee pxc
vendor: siemens model: talon tc
db: NVD ids: CVE-2025-40757

Surface Pro 9 September 2025 update is now rolling out

Trust: 4.75

Fetched: Sept. 19, 2025, 9:56 a.m., Published: Sept. 16, 2025, 4 a.m.
 Vulnerabilities: denial of service, information disclosure
Affected productsExternal IDs
db: NVD ids: CVE-2024-44074, CVE-2022-36392, CVE-2022-38102

Apple Fixes 0-Day Vulnerabilities in Older version of iPhones and iPad

Trust: 3.0

Fetched: Sept. 19, 2025, 9:55 a.m., Published: Sept. 18, 2025, 12:02 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: icloud
vendor: apple model: iphone
vendor: apple model: software update

CVE-2025-10265: Digiever NVR OS Command Injection Vulnerability - Cybersecurity Exploit Tracker by Ameeba

Trust: 3.75

Fetched: Sept. 19, 2025, 9:55 a.m., Published: Nov. 30, 0001, midnight
 Vulnerabilities: os command injection, command injection
Affected productsExternal IDs
db: NVD ids: CVE-2025-10265

LG WebOS TV Vulnerability Let Attackers Bypass Authentication and Enable Full Device Takeover - Cyber Web Spider Blog - News

Trust: 3.0

Fetched: Sept. 19, 2025, 9:54 a.m., Published: Sept. 19, 2025, midnight
 Vulnerabilities: path traversal
Affected productsExternal IDs

CVE-2025-58313 - Cisco Device Standby Module Race Condition Vulnerability

Trust: 3.75

Fetched: Sept. 19, 2025, 9:54 a.m., Published: Sept. 5, 2025, 8:15 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: huawei technologies model: huawei
vendor: huawei model: huawei
db: NVD ids: CVE-2025-58313

CVE-2022-50412 - drm: bridge: adv7511: unregister cec i2c device after cec adapter - SecAlerts

Trust: 3.0

Fetched: Sept. 19, 2025, 9:54 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2022-50412