Sign-up

VARIoT news about IoT security

Use Quick Share on your Android device - Android Help

Trust: 3.0

Fetched: Jan. 14, 2026, 9:13 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: wifi
vendor: google model: pixel
vendor: google model: android

Download apps to your Android device - Android Help

Trust: 3.0

Fetched: Jan. 14, 2026, 9:13 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Download apps & digital content - Google Play Help

Trust: 3.0

Fetched: Jan. 14, 2026, 9:12 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

WhatsApp Vulnerabilities Leaks User’s Metadata Including Device’s

Trust: 3.75

Fetched: Jan. 13, 2026, 10:22 a.m., Published: Jan. 6, 2026, 9:58 a.m.
 Vulnerabilities: information exposure
Affected productsExternal IDs
vendor: wireshark model: wireshark

What Is Known Exploited Vulnerabilities Catalog (KEV)?

Trust: 3.5

Fetched: Jan. 13, 2026, 10:21 a.m., Published: Jan. 13, 2025, midnight
 Vulnerabilities: privilege escalation, buffer overflow, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-22457

Cisco Zero-Day Vulnerability Targeted to Deploy Malicious Lua Backdoor on Thousands of Devices - Breach Spot

Related entries in the VARIoT vulnerabilities database: VAR-202103-0773

Trust: 4.75

Fetched: Jan. 13, 2026, 10:21 a.m., Published: Jan. 2, 2026, 5 p.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: cisco model: routers
vendor: cisco model: ios xe software
vendor: cisco model: ios xe
db: NVD ids: CVE-2023-20273, CVE-2023-20198, CVE-2021-1435

Remote Code Execution Vulnerability in React and Next.js Frameworks: December 2025

Trust: 4.75

Fetched: Jan. 13, 2026, 10:20 a.m., Published: Dec. 17, 2025, 10:37 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: cisco model: finesse
vendor: cisco model: webex
vendor: cisco model: cisco finesse
vendor: cisco model: catalyst
vendor: cisco model: sd-wan
vendor: cisco model: webex meetings
vendor: cisco model: email encryption

PolySwarm’s 2025 Year in Review

Trust: 4.75

Fetched: Jan. 13, 2026, 10:19 a.m., Published: Jan. 13, 2025, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: google model: nexus
db: NVD ids: CVE-2025-53771, CVE-2025-55182, CVE-2025-49706, CVE-2025-49704, CVE-2025-53770, CVE-2025-61882

Top 10 Vulnerability Assessment Tools: Features, Pros, Cons & Comparison - Cotocus

Trust: 4.5

Fetched: Jan. 13, 2026, 10:19 a.m., Published: Jan. 2, 2026, 9 a.m.
 Vulnerabilities: sql injection, cross-site scripting
Affected productsExternal IDs
vendor: essential model: phone
db: NVD ids: CVE-2024-1234

Mitsubishi Electric GT Designer3 | CISA

Trust: 3.75

Fetched: Jan. 13, 2026, 10:18 a.m., Published: Jan. 1, 2026, midnight
 Vulnerabilities: information disclosure
Affected productsExternal IDs
db: NVD ids: CVE-2025-11009

CVE-2025-31200: Critical Memory Corruption Vulnerability in Apple Devices - Ameeba Exploit Tracker

Trust: 4.5

Fetched: Jan. 13, 2026, 10:18 a.m., Published: Nov. 30, 0001, midnight
 Vulnerabilities: memory corruption, code execution
Affected productsExternal IDs
vendor: apple model: tvos
vendor: apple model: macos
db: NVD ids: CVE-2025-31200

Critical 0-Day RCE Vulnerability in Networking Devices Exposes 70,000+ Hosts

Trust: 4.75

Fetched: Jan. 13, 2026, 10:17 a.m., Published: Dec. 30, 2025, 9:48 a.m.
 Vulnerabilities: command execution, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-54322

⚡ Weekly Recap: IoT Exploits, Wallet Breaches, Rogue Extensions, AI Abuse & More

Trust: 4.5

Fetched: Jan. 13, 2026, 10:17 a.m., Published: Jan. 5, 2026, 12:53 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: winscp model: winscp
vendor: putty model: putty
vendor: google model: chrome
vendor: google model: google chrome
vendor: eaton model: drive
db: NVD ids: CVE-2025-59888, CVE-2025-55182, CVE-2025-14346, CVE-2025-53597, CVE-2025-52691, CVE-2025-59887, CVE-2025-20700, CVE-2025-20702, CVE-2025-13915, CVE-2025-52871, CVE-2025-20701, CVE-2025-47411, CVE-2025-48769

Critical 0-Day RCE Vulnerability in Networking Devices Exposes 70,000+

Trust: 5.5

Fetched: Jan. 13, 2026, 10:13 a.m., Published: Dec. 30, 2025, 4:38 p.m.
 Vulnerabilities: denial of service, service disruption, code execution
Affected productsExternal IDs
vendor: snort.org model: snort
vendor: snort model: snort

CVE-2026-0854 - Merit LILIN|NVR - OS Command Injection - SecAlerts

Trust: 3.0

Fetched: Jan. 13, 2026, 10:13 a.m., Published: -
 Vulnerabilities: command injection, os command injection
Affected productsExternal IDs
db: NVD ids: CVE-2026-0854

Critical AdonisJS Bodyparser Flaw (CVSS 9.2) Enables Arbitrary File Write on Servers

Trust: 5.5

Fetched: Jan. 13, 2026, 10:12 a.m., Published: Jan. 6, 2026, 3:30 a.m.
 Vulnerabilities: path traversal, code execution
Affected productsExternal IDs
vendor: node.js model: node.js
db: NVD ids: CVE-2026-21440, CVE-2025-68428

Update Canonical Ubuntu Desktop: USN-7944-1: Net-SNMP vulnerability

Trust: 3.75

Fetched: Jan. 13, 2026, 10:12 a.m., Published: Jan. 13, 7944, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: net-snmp model: net-snmp
vendor: canonical model: ubuntu

Update Canonical Ubuntu Server: USN-7944-1: Net-SNMP vulnerability

Trust: 3.75

Fetched: Jan. 13, 2026, 10:11 a.m., Published: Jan. 13, 7944, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: net-snmp model: net-snmp
vendor: canonical model: ubuntu

Apple MacBook Wi-Fi Vulnerability Exploited | Enigma Security posted on the topic | LinkedIn

Trust: 3.75

Fetched: Jan. 13, 2026, 10:11 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: safari
vendor: apple model: macbook
vendor: google model: chrome
db: NVD ids: CVE-2023-41064, CVE-2023-4863

Update Canonical Ubuntu Server: USN-7945-1: Libxslt vulnerability

Trust: 4.25

Fetched: Jan. 13, 2026, 10:11 a.m., Published: Jan. 13, 7945, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: canonical model: ubuntu