VARIoT news about IoT security

Trust: 3.25

Fetched: May 21, 2025, 6:24 p.m., Published: May 20, 2025, 4:47 p.m.
Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-37970

Trust: 5.75

Fetched: May 21, 2025, 6:22 p.m., Published: May 7, 2025, 6:15 p.m.
Vulnerabilities: privilege elevation
Affected productsExternal IDs
vendor: cisco model: ios software
vendor: cisco model: device manager
vendor: cisco model: cisco ios
vendor: cisco model: industrial ethernet
db: NVD ids: CVE-2025-20164

Trust: 5.0

Fetched: May 21, 2025, 6:22 p.m., Published: May 21, 2025, 3:52 p.m.
Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: cisco model: emergency responder
vendor: cisco model: unity connection
vendor: cisco model: virtualized voice browser
vendor: cisco model: prime collaboration deployment
vendor: cisco model: finesse
vendor: cisco model: unified intelligence center
vendor: cisco model: unified communications
vendor: cisco model: prime collaboration
vendor: cisco model: unified ccx
vendor: cisco model: unity

Trust: 3.0

Fetched: May 21, 2025, 6:16 p.m., Published: May 11, 2025, midnight
Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2022-49818

Trust: 4.75

Fetched: May 21, 2025, 6:16 p.m., Published: May 21, 2025, 6:30 a.m.
Vulnerabilities: code execution
Affected productsExternal IDs
vendor: google model: android
vendor: google model: pixel
vendor: samsung model: samsung
vendor: samsung model: mobile
vendor: samsung model: note
vendor: freetype model: freetype
db: NVD ids: CVE-2025-27363

Trust: 4.25

Fetched: May 21, 2025, 6:15 p.m., Published: Jan. 21, 2050, midnight
Vulnerabilities: authentication bypass, code execution
Affected productsExternal IDs
vendor: apple model: tvos
vendor: apple model: ipad
vendor: apple model: airport express
vendor: apple model: apple tv
vendor: apple model: itunes
vendor: apple model: iphone
vendor: apple model: macos
db: NVD ids: CVE-2025-30422, CVE-2025-24132, CVE-2025-31203, CVE-2025-24251, CVE-2025-24206, CVE-2025-24179, CVE-2025-24131, CVE-2025-31202, CVE-2025-24252, CVE-2025-24270, CVE-2025-31197, CVE-2025-24126, CVE-2025-24177, CVE-2025-24271, CVE-2025-24137, CVE-2025-30445, CVE-2025-24129

Trust: 3.25

Fetched: May 21, 2025, 6:15 p.m., Published: May 21, 2025, 4 p.m.
Vulnerabilities: denial of service, code execution
Affected productsExternal IDs
vendor: apple model: tvos
vendor: apple model: ipad
vendor: apple model: software update
vendor: apple model: iphone
vendor: apple model: macos

Trust: 4.75

Fetched: May 21, 2025, 6:15 p.m., Published: May 21, 2025, 3:52 p.m.
Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: identity services engine
vendor: cisco model: cisco identity services engine

Trust: 4.25

Fetched: May 21, 2025, 6:13 p.m., Published: May 6, 2025, 3:44 p.m.
Vulnerabilities: denial of service, default credentials
Affected productsExternal IDs
vendor: trend model: security
vendor: samsung model: samsung
Related entries in the VARIoT vulnerabilities database: VAR-202504-3437

Trust: 4.25

Fetched: May 21, 2025, 6:13 p.m., Published: May 4, 2025, 3:55 p.m.
Vulnerabilities: privilege escalation, command injection, code execution
Affected productsExternal IDs
vendor: google model: chrome
vendor: avast model: antivirus
vendor: apple model: watch
vendor: apple model: macos
db: NVD ids: CVE-2025-43865, CVE-2025-31650, CVE-2025-31191, CVE-2025-43864, CVE-2025-3500, CVE-2025-31324

Trust: 5.0

Fetched: May 21, 2025, 6:12 p.m., Published: May 15, 2025, midnight
Vulnerabilities: denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2024-44074, CVE-2024-21864

Trust: 4.0

Fetched: May 18, 2025, 9:04 a.m., Published: April 26, 2025, 9:03 a.m.
Vulnerabilities: default credentials, default password
Affected productsExternal IDs
vendor: essential model: phone
vendor: smarter model: coffee

Trust: 3.5

Fetched: May 16, 2025, 9:44 a.m., Published: May 11, 2025, 1:30 p.m.
Vulnerabilities: code execution, privilege escalation
Affected productsExternal IDs
Related entries in the VARIoT vulnerabilities database: VAR-202505-1034, VAR-202505-1414, VAR-202505-1415

Trust: 5.75

Fetched: May 16, 2025, 9:43 a.m., Published: May 8, 2025, 7:33 a.m.
Vulnerabilities: command injection, path traversal, remote command injection...
Affected productsExternal IDs
vendor: sonicwall model: sma 100
vendor: sonicwall model: web application firewall
vendor: sonicwall model: secure mobile access
db: NVD ids: CVE-2025-32821, CVE-2025-32820, CVE-2025-32819

Trust: 4.0

Fetched: May 16, 2025, 9:43 a.m., Published: May 7, 2025, 11:19 a.m.
Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: cisco model: ios xe software
vendor: cisco model: industrial ethernet
vendor: cisco model: ios xe
vendor: cisco model: cisco ios
vendor: cisco model: ios software
vendor: cisco model: device manager
Related entries in the VARIoT vulnerabilities database: VAR-201805-0262

Trust: 6.0

Fetched: May 16, 2025, 9:43 a.m., Published: May 7, 2025, 9:46 a.m.
Vulnerabilities: command injection
Affected productsExternal IDs
vendor: snort model: snort
db: NVD ids: CVE-2018-10561, CVE-2024-6047, CVE-2024-11120

Trust: 3.75

Fetched: May 16, 2025, 9:41 a.m., Published: Jan. 16, 2025, midnight
Vulnerabilities: directory traversal
Affected productsExternal IDs
db: NVD ids: CVE-2024-0204

Trust: 5.0

Fetched: May 16, 2025, 9:41 a.m., Published: May 13, 2025, 9:07 a.m.
Vulnerabilities: default password
Affected productsExternal IDs
vendor: essential model: phone

Trust: 3.25

Fetched: May 16, 2025, 9:39 a.m., Published: May 15, 2025, 6:27 a.m.
Vulnerabilities: encryption vulnerability
Affected productsExternal IDs
db: NVD ids: CVE-2025-27524

Trust: 5.0

Fetched: May 16, 2025, 9:38 a.m., Published: May 11, 2025, midnight
Vulnerabilities: resource exhaustion, memory leak
Affected productsExternal IDs
db: NVD ids: CVE-2022-49924