Sign-up

VARIoT news about IoT security

CVE-2026-2567 : Buffer Overflow Vulnerability in Wavlink WL-NU516U1 Devices

Trust: 3.5

Fetched: Feb. 18, 2026, 9:23 a.m., Published: Feb. 16, 2026, 5:32 p.m.
 Vulnerabilities: buffer overflow
Affected productsExternal IDs
db: NVD ids: CVE-2026-2567

Understanding and Mitigating Data Breaches in Mobile Devices: Insights from IT Professionals | Springer Nature Link

Trust: 3.75

Fetched: Feb. 18, 2026, 9:23 a.m., Published: Feb. 18, 2026, midnight
 Vulnerabilities: -

Fortinet Confirms Active Exploitation of FortiCloud SSO Bypass Vulnerability

Trust: 4.0

Fetched: Feb. 18, 2026, 9:22 a.m., Published: Jan. 23, 2026, 1:44 p.m.
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
db: NVD ids: CVE-2025-59719, CVE-2025-59718

What is Cyber Security? A Complete Beginner’s Guide

Trust: 3.25

Fetched: Feb. 18, 2026, 9:21 a.m., Published: -
 Vulnerabilities: sql injection, cross-site scripting
Affected productsExternal IDs
vendor: cisco model: sd-wan
vendor: cisco model: routers
vendor: cisco model: meeting
vendor: check point model: check point
vendor: check point model: endpoint security
vendor: palo model: networks
vendor: palo model: firewall
vendor: cisco systems model: sd-wan
vendor: cisco systems model: routers
vendor: cisco systems model: meeting
vendor: palo alto networks model: networks
vendor: palo alto networks model: firewall

Windows Notepad Vulnerability Allows Attackers to Execute Code Remotely

Trust: 4.75

Fetched: Feb. 18, 2026, 9:21 a.m., Published: Feb. 11, 2026, 5:06 a.m.
 Vulnerabilities: code execution, command injection, privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2026-20841

Critical Airleader Vulnerability Enables Remote Code Execution

Trust: 3.75

Fetched: Feb. 18, 2026, 9:21 a.m., Published: Feb. 16, 2026, 2:33 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2026-13589, CVE-2026-1358

OpenSSL Vulnerabilities Allow Remote Attackers to Execute Malicious Code

Trust: 4.75

Fetched: Feb. 18, 2026, 9:20 a.m., Published: Jan. 28, 2026, 5:52 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-69419, CVE-2025-68160, CVE-2026-22795, CVE-2025-69420, CVE-2025-15469, CVE-2025-66199, CVE-2025-11187, CVE-2025-69421, CVE-2025-15468, CVE-2026-22796, CVE-2025-15467, CVE-2025-69418

Apple releases urgent security update for iPhone iPad Mac zero-day flaw | Fox News

Trust: 4.5

Fetched: Feb. 18, 2026, 9:20 a.m., Published: Feb. 18, 2025, midnight
 Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: apple tv
vendor: apple model: watch
vendor: apple model: macos
vendor: apple model: safari
vendor: apple model: ipad
vendor: apple model: software update
db: NVD ids: CVE-2026-20700

FortiGate SSO bug still exploitable despite December patch • The Register

Trust: 4.75

Fetched: Feb. 18, 2026, 9:19 a.m., Published: -
 Vulnerabilities: authentication bypass, authentication flaw
Affected productsExternal IDs
vendor: fortigate model: fortios

Windows Remote Desktop Services 0-Day Vulnerability Exploited in the Wild to Escalate Privileges

Trust: 4.25

Fetched: Feb. 18, 2026, 9:19 a.m., Published: Feb. 11, 2026, 2:37 a.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2026-21533

(Solved) - Identify the configuration vulnerability that exists due to the... (1 Answer) | Transtutors

Trust: 3.25

Fetched: Feb. 18, 2026, 9:18 a.m., Published: Feb. 15, 2026, 8:46 p.m.
 Vulnerabilities: configuration vulnerability
Affected productsExternal IDs

Cyber Threats Intensify Across Global Health Sector

Trust: 3.75

Fetched: Feb. 18, 2026, 9:18 a.m., Published: Feb. 17, 2026, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: trend model: security

What Do the New BSI macOS Security Warnings Mean for Your Device Safety? - PUPUWEB

Trust: 4.25

Fetched: Feb. 18, 2026, 9:17 a.m., Published: Feb. 18, 2026, 8:11 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: macos
db: NVD ids: CVE-2026-20612, CVE-2026-20620, CVE-2025-43530, CVE-2025-46290, CVE-2026-20625

2026 Vulnerability Report: 5 Critical Exploitation Trends

Trust: 4.0

Fetched: Feb. 18, 2026, 9:17 a.m., Published: Feb. 17, 2026, 11 a.m.
 Vulnerabilities: command injection, path traversal
Affected productsExternal IDs

CISA Warns of ZLAN ICS Devices Vulnerabilities Allows Complete Device

Related entries in the VARIoT vulnerabilities database: VAR-202401-1574, VAR-202402-1769

Trust: 5.75

Fetched: Feb. 18, 2026, 9:17 a.m., Published: Feb. 17, 2026, midnight
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
vendor: palo model: networks
vendor: palo model: firewall
vendor: snort model: snort
vendor: palo alto networks model: networks
vendor: palo alto networks model: firewall
db: NVD ids: CVE-2024-21916, CVE-2024-21915

IP Phone Cisco CP-6821-3PCC-K9 z podstawką i słuchawką (bez zasilacza) | Sprawdzony Sprzęt IT | Device

Trust: 3.0

Fetched: Feb. 18, 2026, 9:13 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: ip phone

FileZen Vulnerability Enables Command Execution

Trust: 5.75

Fetched: Feb. 17, 2026, 9:34 a.m., Published: Feb. 16, 2026, 7:27 p.m.
 Vulnerabilities: command execution, os command injection, command injection
Affected productsExternal IDs
vendor: soliton model: filezen
db: NVD ids: CVE-2026-251088, CVE-2026-25108

Apple Patches Actively Exploited Zero-day CVE-2026-20700 In Dyld Across IOS, MacOS And Other Platforms

Trust: 4.25

Fetched: Feb. 17, 2026, 9:34 a.m., Published: Feb. 16, 2026, 9:36 a.m.
 Vulnerabilities: memory corruption, code execution, privilege escalation
Affected productsExternal IDs
vendor: apple model: macos
vendor: apple model: watchos
vendor: apple model: iphone
vendor: apple model: tvos
vendor: apple model: safari
vendor: apple model: ipad
vendor: trend model: security
db: NVD ids: CVE-2025-14174, CVE-2026-20700, CVE-2025-43529

Shelly Security Vulnerability: Check This Setting Now

Trust: 3.0

Fetched: Feb. 17, 2026, 9:33 a.m., Published: Feb. 16, 2026, 3:45 p.m.
 Vulnerabilities: -
Affected productsExternal IDs

Joomla Vulnerabilities in Novarain/Tassos Framework Expose SQL Injection Risks

Trust: 4.0

Fetched: Feb. 17, 2026, 9:33 a.m., Published: Feb. 3, 2026, midnight
 Vulnerabilities: code execution, sql injection
Affected productsExternal IDs