Sign-up

VARIoT news about IoT security

Update Canonical Ubuntu Desktop: USN-7983-1: containerd vulnerabilities

Trust: 6.25

Fetched: Feb. 1, 2026, 9:36 a.m., Published: Jan. 1, 7983, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: canonical model: ubuntu
db: NVD ids: CVE-2025-64329, CVE-2024-25621

CVE-2024-55569: Critical Length Check Vulnerability in Samsung Mobile and Wearable Processors and Modems - Ameeba Exploit Tracker

Trust: 4.75

Fetched: Feb. 1, 2026, 9:35 a.m., Published: Nov. 30, 0001, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: samsung model: samsung mobile
vendor: samsung model: exynos
vendor: samsung model: mobile
vendor: samsung model: samsung
db: NVD ids: CVE-2024-55569

CISA Warns of FortiCloud SSO Authentication Bypass Vulnerability Exploited in Attacks

Trust: 4.75

Fetched: Feb. 1, 2026, 9:33 a.m., Published: Jan. 29, 2026, 2:47 p.m.
 Vulnerabilities: code execution, privilege escalation, authentication bypass
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2026-24858

Multiple D-Link DSL gateway devices contain a command... · CVE-2026-0625 · GitHub Advisory Database · GitHub

Trust: 5.75

Fetched: Feb. 1, 2026, 9:33 a.m., Published: Jan. 6, 2026, midnight
 Vulnerabilities: code execution, command injection
Affected productsExternal IDs
vendor: d-link model: dsl-2640b
vendor: d-link model: dsl-2740r
db: NVD ids: CVE-2026-0625

Redmi Buds Vulnerability Allow Attackers Access Call Data and Trigger Firmware Crashes

Trust: 4.75

Fetched: Feb. 1, 2026, 9:32 a.m., Published: Jan. 19, 2026, 7:55 a.m.
 Vulnerabilities: information leak, denial of service, improper bounds checking...
Affected productsExternal IDs
vendor: xiaomi model: redmi
db: NVD ids: CVE-2025-13834, CVE-2025-13328

The 7 Stages of Vulnerability Management Lifecycle

Trust: 4.25

Fetched: Feb. 1, 2026, 9:31 a.m., Published: Feb. 7, 2026, midnight
 Vulnerabilities: code execution, sql injection
Affected productsExternal IDs
vendor: cisco model: intrusion prevention system
vendor: cisco model: umbrella
db: NVD ids: CVE-2023-38545

17 Security Tips to Protect Your Raspberry Pi Like a Pro - RaspberryTips

Trust: 4.5

Fetched: Feb. 1, 2026, 9:29 a.m., Published: Nov. 28, 2024, 5:32 a.m.
 Vulnerabilities: default password
Affected productsExternal IDs
vendor: google model: home
vendor: putty model: putty

ERROR: The request could not be satisfied

Trust: 3.25

Fetched: Feb. 1, 2026, 9:29 a.m., Published: Feb. 1, 2026, midnight
 Vulnerabilities: configuration error
Affected productsExternal IDs

Android Security Bulletin January 2026: Why Mobile Device Security Audit Services Matter

Trust: 3.5

Fetched: Feb. 1, 2026, 9:26 a.m., Published: Jan. 1, 2026, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: home
vendor: google model: android
vendor: google model: android one
db: NVD ids: CVE-2025-54957

CVE-2025-71188 - dmaengine: lpc18xx-dmamux: fix device leak on route allocation

Trust: 3.25

Fetched: Feb. 1, 2026, 9:26 a.m., Published: Jan. 31, 2026, 12:16 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-71188

CVE-2026-23028 - LoongArch: KVM: Fix kvm_device leak in kvm_ipi_destroy()

Trust: 3.25

Fetched: Feb. 1, 2026, 9:24 a.m., Published: Jan. 31, 2026, 12:16 p.m.
 Vulnerabilities: memory leak
Affected productsExternal IDs
db: NVD ids: CVE-2026-23028

CVE-2026-23027 - LoongArch: KVM: Fix kvm_device leak in kvm_pch_pic_destroy()

Trust: 3.25

Fetched: Feb. 1, 2026, 9:24 a.m., Published: Jan. 31, 2026, 12:16 p.m.
 Vulnerabilities: memory leak
Affected productsExternal IDs
db: NVD ids: CVE-2026-23027

CVE-2026-23029 - LoongArch: KVM: Fix kvm_device leak in kvm_eiointc_destroy()

Trust: 3.25

Fetched: Feb. 1, 2026, 9:24 a.m., Published: Jan. 31, 2026, 12:16 p.m.
 Vulnerabilities: memory leak
Affected productsExternal IDs
db: NVD ids: CVE-2026-23029

Over 3.28 Million Fortinet Devices Exposed Online With Risky Web Properties

Trust: 3.75

Fetched: Feb. 1, 2026, 9:22 a.m., Published: Jan. 30, 2026, 10:17 a.m.
 Vulnerabilities: privilege escalation, authentication bypass
Affected productsExternal IDs
db: NVD ids: CVE-2026-24858, CVE-2026-248589

CVE-2026-1281, CVE-2026-1340: Ivanti Endpoint Manager Mobile (EPMM) Zero-Day Vulnerabilities Exploited - Blog | Tenable®

Trust: 5.0

Fetched: Feb. 1, 2026, 9:21 a.m., Published: Jan. 30, 2026, 6:42 p.m.
 Vulnerabilities: code execution, code injection
Affected productsExternal IDs
db: NVD ids: CVE-2026-1340, CVE-2026-1281

Microsoft rolled out January 2026 firmware updates for Surface Laptop Studio 2

Trust: 3.5

Fetched: Feb. 1, 2026, 9:20 a.m., Published: Jan. 27, 2026, 5 a.m.
 Vulnerabilities: information disclosure, denial of service, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-23286, CVE-2024-44074, CVE-2024-0146, CVE-2025-23309, CVE-2024-21864, CVE-2025-23276, CVE-2025-23345, CVE-2025-23288, CVE-2025-23281, CVE-2024-0150, CVE-2025-23347

Analysis of Single Sign-On Abuse on FortiOS | Fortinet Blog

Trust: 3.75

Fetched: Feb. 1, 2026, 9:19 a.m., Published: Jan. 22, 2026, 6:44 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2025-59718, CVE-2025-59719

CISA Warns of FortiCloud SSO Authentication Bypass Vulnerability Actively Exploited in the Wild - Digital Warfare

Trust: 3.5

Fetched: Feb. 1, 2026, 9:18 a.m., Published: Jan. 30, 2026, 11:43 a.m.
 Vulnerabilities: code execution, authentication bypass, memory corruption
Affected productsExternal IDs

Device Vulnerability Management Consumption Market Key Trends Driving Global Expansion | United Kingdom | Japan | France | Germany

Trust: 3.5

Fetched: Feb. 1, 2026, 9:17 a.m., Published: March 1, 2026, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: palo model: networks
vendor: palo alto networks model: networks

Update Canonical Ubuntu Server: USN-7978-1: GNU Screen vulnerabilities

Trust: 6.0

Fetched: Jan. 30, 2026, 9:43 a.m., Published: Jan. 30, 7978, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: canonical model: ubuntu
db: NVD ids: CVE-2025-46804, CVE-2025-46805, CVE-2023-24626, CVE-2025-46802