Sign-up

VARIoT news about IoT security

Texas Sues TP-Link Over Alleged Security Risks and Supply Chain Deception | eSecurity Planet

Trust: 3.75

Fetched: Feb. 22, 2026, 9:33 a.m., Published: Feb. 19, 2026, 8:34 p.m.
 Vulnerabilities: default credentials
Affected productsExternal IDs
vendor: tp-link model: routers
vendor: tp link model: routers

CISA Alert: Honeywell CCTV Authentication Bypass Vulnerability | Luis Oria Seidel posted on the topic | LinkedIn

Trust: 3.0

Fetched: Feb. 22, 2026, 9:31 a.m., Published: -
 Vulnerabilities: authentication bypass
Affected productsExternal IDs

Cyber Threats Intensify Across Global Health Sector

Trust: 3.75

Fetched: Feb. 22, 2026, 9:31 a.m., Published: Feb. 17, 2026, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: trend model: security

TP-Link Router Vulnerabilities Exposed | Enigma Security posted on the topic | LinkedIn

Trust: 4.0

Fetched: Feb. 22, 2026, 9:29 a.m., Published: -
 Vulnerabilities: command injection, authentication bypass, default credentials
Affected productsExternal IDs
vendor: tp-link model: routers

ZLAN Information Technology Co. ZLAN5143D | CISA

Trust: 3.0

Fetched: Feb. 22, 2026, 9:28 a.m., Published: Feb. 1, 2026, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2026-25084, CVE-2026-24789

Microsoft Windows 10 Security Vulnerabilities in 2026

Trust: 3.75

Fetched: Feb. 22, 2026, 9:27 a.m., Published: Feb. 10, 2026, midnight
 Vulnerabilities: buffer overflow, denial of service, use after free...
Affected productsExternal IDs
db: NVD ids: CVE-2020-0569, CVE-2021-42297, CVE-2021-36945, CVE-2021-43211

Critical Vulnerabilities in Ivanti EPMM Exploited

Trust: 4.25

Fetched: Feb. 22, 2026, 9:26 a.m., Published: Feb. 20, 2026, 5:49 p.m.
 Vulnerabilities: code execution, code injection
Affected productsExternal IDs
vendor: palo alto networks model: firewall
vendor: palo alto networks model: networks
vendor: palo model: firewall
vendor: palo model: networks
db: NVD ids: CVE-2026-1281, CVE-2026-12821, CVE-2026-1340

Selective Thread Emulation and Fuzzing Expose DoS Flaws in Socomec DIRIS M-70 IIoT Device - Simply Secure Group

Related entries in the VARIoT vulnerabilities database: VAR-202512-0005, VAR-202512-0006, VAR-202512-0007, VAR-202512-0182, VAR-202512-0181, VAR-202512-0008

Trust: 4.75

Fetched: Feb. 22, 2026, 9:25 a.m., Published: Feb. 22, 2070, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: snort model: snort
vendor: snort.org model: snort
db: NVD ids: CVE-2025-54850, CVE-2025-54849, CVE-2025-54848, CVE-2025-55221, CVE-2025-55222, CVE-2025-54851

Notepad++ Fixes Hijacked Update Mechanism Used to Deliver Targeted Malware

Trust: 5.5

Fetched: Feb. 22, 2026, 9:20 a.m., Published: Feb. 18, 2026, 7:40 a.m.
 Vulnerabilities: search path vulnerability, code execution
Affected productsExternal IDs
vendor: palo alto networks model: networks
vendor: palo model: networks
db: NVD ids: CVE-2026-25926, CVE-2025-15556

CISA Warns of ZLAN ICS Devices Vulnerabilities Allows Complete Device Takeover

Trust: 5.0

Fetched: Feb. 22, 2026, 9:19 a.m., Published: Feb. 16, 2026, 10:07 a.m.
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
db: NVD ids: CVE-2026-247899, CVE-2026-250849

Socomec DIRIS M-70 Gateway: Six Critical DoS Vulnerabilities Exposed

Related entries in the VARIoT vulnerabilities database: VAR-202512-0007, VAR-202512-0181

Trust: 4.75

Fetched: Feb. 22, 2026, 9:19 a.m., Published: Feb. 21, 2026, 4:12 a.m.
 Vulnerabilities: integer overflow
Affected productsExternal IDs
vendor: cisco model: access points
vendor: snort model: snort
db: NVD ids: CVE-2025-548517, CVE-2025-552227, CVE-2025-548507, CVE-2025-548487, CVE-2025-548497, CVE-2025-54848, CVE-2025-55222, CVE-2025-552217

Microsoft Windows 11 KB5077181 Update Triggers Infinite Restart Loop on Some Devices

Trust: 4.0

Fetched: Feb. 22, 2026, 9:18 a.m., Published: Feb. 16, 2026, 3:10 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2026-215338, CVE-2026-215197, CVE-2026-208417, CVE-2026-215107

CVE-2026-26991: LibreNMS Device Group Name XSS | Miggo

Trust: 5.25

Fetched: Feb. 22, 2026, 9:18 a.m., Published: Feb. 22, 2025, midnight
 Vulnerabilities: cross-site scripting
Affected productsExternal IDs
db: NVD ids: CVE-2026-26991

DoS Flaws Exposed In Socomec DIRIS M-70 IIoT Device Through Fuzzing

Related entries in the VARIoT vulnerabilities database: VAR-202512-0005, VAR-202512-0008

Trust: 3.75

Fetched: Feb. 22, 2026, 9:17 a.m., Published: Feb. 20, 2026, 11:25 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-54850, CVE-2025-548497, CVE-2025-548487, CVE-2025-552217, CVE-2025-54851

CVE-2026-27199: Werkzeug Vulnerability in safe_join Function Allows Windows Special Device Names

Trust: 4.0

Fetched: Feb. 22, 2026, 9:16 a.m., Published: Feb. 20, 2026, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2026-27199

Saiba mais sobre o Android Device Configuration Service - Ajuda do Android

Trust: 3.0

Fetched: Feb. 22, 2026, 9:14 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Manage your Google Settings - Google Account Help

Trust: 3.0

Fetched: Feb. 22, 2026, 9:14 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

IP Phone Cisco CP-6821-3PCC-K9 z podstawką i słuchawką (bez zasilacza) | Sprawdzony Sprzęt IT | Device

Trust: 3.0

Fetched: Feb. 22, 2026, 9:12 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: ip phone

Don't ignore Apple's urgent security update - AOL

Trust: 4.5

Fetched: Feb. 20, 2026, 9:48 a.m., Published: Feb. 17, 2026, 7:32 p.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: apple model: safari
vendor: apple model: macos
vendor: apple model: apple tv
vendor: apple model: iphone
vendor: apple model: watch
vendor: apple model: ipad
db: NVD ids: CVE-2026-20700

CISA: Fortinet Releases Guidance to Address Ongoing Exploitation of Authentication Bypass Vulnerability CVE-2026-24858 - Cyber Security Review

Trust: 5.5

Fetched: Feb. 20, 2026, 9:47 a.m., Published: Jan. 28, 2026, 8:42 a.m.
 Vulnerabilities: authentication bypass, code execution
Affected productsExternal IDs
vendor: cisco systems model: routers
vendor: cisco systems model: series
vendor: cisco model: routers
vendor: cisco model: series
vendor: apple model: safari
vendor: apple model: macos
vendor: apple model: watchos
vendor: apple model: software update
vendor: apple model: tvos
db: NVD ids: CVE-2026-24858, CVE-2025-59718, CVE-2025-59719