Sign-up

VARIoT news about IoT security

Rockwell Automation ControlLogix | CISA

Trust: 4.5

Fetched: Feb. 8, 2026, 9:34 a.m., Published: -
 Vulnerabilities: resource exhaustion, memory leak
Affected productsExternal IDs
vendor: rockwell model: controllogix
vendor: rockwell model: automation controllogix
vendor: rockwell automation model: controllogix
vendor: rockwell automation model: automation controllogix
db: NVD ids: CVE-2025-14027

Microsoft releases urgent Office patch. Russian-state hackers pounce. - Ars Technica

Trust: 3.0

Fetched: Feb. 8, 2026, 9:34 a.m., Published: Feb. 4, 2026, 11:08 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2026-21509

10 ways AI can inflict unprecedented damage in 2026 | ZDNET

Trust: 3.5

Fetched: Feb. 8, 2026, 9:31 a.m., Published: Feb. 10, 2026, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: nexus
vendor: google model: home
vendor: google model: chrome
vendor: schneider model: concept
vendor: samsung model: samsung
vendor: trend model: security

Fortinet Fixes Critical FortiSIEM Flaw Allowing Unauthenticated Remote Code Execution

Trust: 4.5

Fetched: Feb. 8, 2026, 9:29 a.m., Published: Jan. 14, 2026, 11:53 a.m.
 Vulnerabilities: code execution, privilege escalation, os command injection...
Affected productsExternal IDs
db: NVD ids: CVE-2025-47855, CVE-2025-64155

Security Bulletins for HUAWEI Phones/Tablets, February 2026

Trust: 4.5

Fetched: Feb. 8, 2026, 9:29 a.m., Published: Jan. 30, 2026, 4:51 p.m.
 Vulnerabilities: authentication bypass, bounds access vulnerability, buffer overflow
Affected productsExternal IDs
vendor: huawei model: huawei
vendor: huawei model: emui
db: NVD ids: CVE-2026-24916, CVE-2026-24919, CVE-2026-24930, CVE-2026-24920, CVE-2026-24926, CVE-2026-24917, CVE-2026-24928, CVE-2026-24931, CVE-2026-24915, CVE-2026-24929, CVE-2026-24925, CVE-2026-24921, CVE-2026-24918, CVE-2026-24924, CVE-2026-24922, CVE-2026-24927, CVE-2026-24923, CVE-2026-24914

Microsoft and Adobe Patch Tuesday, January 2026 Security Update Review | Qualys

Trust: 5.5

Fetched: Feb. 8, 2026, 9:22 a.m., Published: Jan. 13, 2026, 9:34 p.m.
 Vulnerabilities: code execution, denial of service, feature bypass...
Affected productsExternal IDs
vendor: motorola model: motorola
db: NVD ids: CVE-2026-20924, CVE-2026-20866, CVE-2026-20812, CVE-2026-20816, CVE-2026-20956, CVE-2026-20949, CVE-2026-20958, CVE-2026-20947, CVE-2026-20940, CVE-2026-20840, CVE-2026-20951, CVE-2026-20863, CVE-2026-20860, CVE-2026-20871, CVE-2026-20821, CVE-2026-20811, CVE-2026-20957, CVE-2026-20826, CVE-2026-20952, CVE-2026-20923, CVE-2026-20858, CVE-2026-20827, CVE-2026-21221, CVE-2026-20839, CVE-2026-20870, CVE-2026-20874, CVE-2026-20869, CVE-2026-20946, CVE-2023-31096, CVE-2026-20849, CVE-2026-20820, CVE-2026-20944, CVE-2026-20963, CVE-2026-20851, CVE-2026-20824, CVE-2026-20867, CVE-2026-20859, CVE-2026-20918, CVE-2026-20943, CVE-2026-20920, CVE-2026-20857, CVE-2026-20815, CVE-2026-20873, CVE-2026-20830, CVE-2026-20818, CVE-2026-20868, CVE-2026-20817, CVE-2026-20955, CVE-2026-21265, CVE-2026-20862, CVE-2026-20931, CVE-2026-20959, CVE-2026-20861, CVE-2026-20864, CVE-2026-20838, CVE-2026-20875, CVE-2026-20937, CVE-2026-20823, CVE-2026-20950, CVE-2026-21222, CVE-2026-20941, CVE-2026-20835, CVE-2026-20939, CVE-2026-20922, CVE-2026-20953, CVE-2026-20865, CVE-2026-20854, CVE-2026-20932, CVE-2026-20843, CVE-2026-20808, CVE-2026-20833, CVE-2026-20809, CVE-2026-20856, CVE-2026-20877

Hackers Exploiting React Server Components Vulnerability in the Wild to Deploy Malicious Payloads

Trust: 4.75

Fetched: Feb. 8, 2026, 9:20 a.m., Published: Feb. 4, 2026, 2 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-55182, CVE-2025-5518210

Memory Leak Vulnerability in Linux Kernel's KVM Device Management

Trust: 5.0

Fetched: Feb. 8, 2026, 9:17 a.m., Published: Jan. 31, 2026, midnight
 Vulnerabilities: memory leak
Affected productsExternal IDs
db: NVD ids: CVE-2026-23027

Memory Leak Vulnerability in Linux Kernel's KVM Device Management

Trust: 5.0

Fetched: Feb. 8, 2026, 9:16 a.m., Published: Jan. 31, 2026, midnight
 Vulnerabilities: improper memory handling, memory leak
Affected productsExternal IDs
db: NVD ids: CVE-2026-23028

Device Leak Mitigation in Linux Kernel's DMA Engine: CVE-2025-71187

Trust: 3.25

Fetched: Feb. 8, 2026, 9:16 a.m., Published: Jan. 31, 2026, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-71187

Device Leak Fix in Linux Kernel's DMA Engine: CVE-2025-71185

Trust: 3.25

Fetched: Feb. 8, 2026, 9:15 a.m., Published: Jan. 31, 2026, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-71185

Over a Billion Android Devices at Risk: Google Warns of Security Vulnerabilities

Trust: 3.0

Fetched: Feb. 8, 2026, 9:12 a.m., Published: Feb. 8, 2026, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Reset your Android device to factory settings - Android Help

Trust: 3.0

Fetched: Feb. 8, 2026, 9:10 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Update Canonical Ubuntu Desktop: USN-7994-1: MySQL vulnerabilities

Trust: 3.25

Fetched: Feb. 6, 2026, 9:44 a.m., Published: Jan. 6, 7994, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: canonical model: ubuntu

Update Canonical Ubuntu Server: USN-7993-1: libpng vulnerabilities

Trust: 4.25

Fetched: Feb. 6, 2026, 9:43 a.m., Published: Jan. 6, 7993, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: canonical model: ubuntu

Surge Protection Devices Market in the United Kingdom | Report - IndexBox - Prices, Size, Forecast, and Companies

Trust: 3.75

Fetched: Feb. 6, 2026, 9:42 a.m., Published: Feb. 4, 2026, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: trend model: security

Ivanti's Enterprise Mobility Manager Under Siege as Zero-Day Vulnerabilities Trigger Widespread Exploitation Campaign

Trust: 3.5

Fetched: Feb. 6, 2026, 9:40 a.m., Published: Feb. 4, 2026, 11:45 a.m.
 Vulnerabilities: code execution, authentication bypass, sql injection
Affected productsExternal IDs
db: NVD ids: CVE-2024-11639, CVE-2025-0282

Critical TP-Link Vulnerabilities Demand Immediate Firmware Updates - Cyber Web Spider Blog - News

Trust: 4.0

Fetched: Feb. 6, 2026, 9:40 a.m., Published: Feb. 5, 2026, midnight
 Vulnerabilities: os command injection, command injection
Affected productsExternal IDs
vendor: tp-link model: routers

TP-Link Archer C7 Firmware Vulnerability Exposed | Luis Oria Seidel posted on the topic | LinkedIn

Trust: 4.5

Fetched: Feb. 6, 2026, 9:40 a.m., Published: -
 Vulnerabilities: privilege escalation, authentication bypass
Affected productsExternal IDs
vendor: tplink model: routers
vendor: tplink model: archer c7
vendor: tplink model: archer c7 firmware
vendor: tp-link model: routers
vendor: tp-link model: archer c7
vendor: tp-link model: archer c7 firmware

CISA: Fortinet Releases Guidance to Address Ongoing Exploitation of Authentication Bypass Vulnerability CVE-2026-24858 - Cyber Security Review

Trust: 6.0

Fetched: Feb. 6, 2026, 9:39 a.m., Published: Jan. 28, 2026, 8:42 a.m.
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
vendor: check point model: check point
db: NVD ids: CVE-2025-59719, CVE-2025-59718, CVE-2020-0601, CVE-2026-24858, CVE-2020-6007