Sign-up

VARIoT news about IoT security

OWASP Top 10 Vulnerabilities: Updated | GeeksforGeeks

Trust: 3.5

Fetched: May 16, 2025, 9:38 a.m., Published: Dec. 10, 2020, 7:32 a.m.
 Vulnerabilities: default administrator username, request forgery, code execution...
Affected productsExternal IDs
vendor: essential model: phone

Fortinet TACACS+ Vulnerability Alert - CVE-2025-22252: What You Need to Know

Trust: 5.0

Fetched: May 16, 2025, 9:37 a.m., Published: -
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2025-22252

CVE-2025-27525 Information Exposure vulnerability in JP1/IT ... - vulnerability database | Vulners.com

Trust: 3.25

Fetched: May 16, 2025, 9:37 a.m., Published: May 15, 2025, 6:45 a.m.
 Vulnerabilities: information exposure
Affected productsExternal IDs
db: NVD ids: CVE-2025-27525

Multiple Vulnerabilities in Fortinet Products Could Allow for Arbitrary Code Execution

Trust: 3.0

Fetched: May 16, 2025, 9:36 a.m., Published: May 14, 2025, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs

Cisco Catalyst SD-WAN Manager Arbitrary File Overwrite Vulnerability

Trust: 5.0

Fetched: May 16, 2025, 9:36 a.m., Published: May 8, 2025, 3:55 p.m.
 Vulnerabilities: file overwrite vulnerability
Affected productsExternal IDs
vendor: cisco model: catalyst
vendor: cisco model: wan manager
vendor: cisco model: sd-wan

How a Single Line Of Code Could Brick Your iPhone | Rambo Codes

Trust: 4.75

Fetched: May 16, 2025, 9:35 a.m., Published: April 26, 2025, 11 a.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: apple model: iphone
db: NVD ids: CVE-2025-24091

Millions of AirPlay devices can be hacked over Wi-Fi; CarPlay too - 9to5Mac

Trust: 3.0

Fetched: May 16, 2025, 9:34 a.m., Published: April 29, 2025, 1:12 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone

Cisco IOS Software for Cisco Catalyst 2960X, 2960XR, 2960CX, and 3560CX Series Switches Secure Boot Bypass Vulnerability

Trust: 3.0

Fetched: May 16, 2025, 9:34 a.m., Published: May 7, 2025, 3:53 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: ios xe software
vendor: cisco model: series
vendor: cisco model: series switches
vendor: cisco model: catalyst
vendor: cisco model: ios xe
vendor: cisco model: cisco ios
vendor: cisco model: ios software

Siemens RUGGEDCOM APE1808 Devices | CISA

Trust: 3.75

Fetched: May 16, 2025, 9:34 a.m., Published: Jan. 10, 2023, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: siemens model: ruggedcom
db: NVD ids: CVE-2024-32122, CVE-2024-52963

CVE-2022-49836 siox: fix possible memory leak in siox_device... - vulnerability database | Vulners.com

Trust: 3.0

Fetched: May 16, 2025, 9:33 a.m., Published: May 1, 2025, 2:09 p.m.
 Vulnerabilities: memory leak
Affected productsExternal IDs
db: NVD ids: CVE-2022-49836

Cisco IOS XE Software DHCP Snooping Denial of Service Vulnerability

Trust: 4.0

Fetched: May 16, 2025, 9:32 a.m., Published: May 7, 2025, 3:53 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: ios xe software
vendor: cisco model: ios xe
vendor: cisco model: cisco ios
vendor: cisco model: cisco ios xe

Cisco IOS XE Wireless Controller Software Arbitrary File Upload Vulnerability

Trust: 4.0

Fetched: May 16, 2025, 9:27 a.m., Published: May 7, 2025, 3:52 p.m.
 Vulnerabilities: file upload vulnerability
Affected productsExternal IDs
vendor: cisco model: ios xe software
vendor: cisco model: ios xe
vendor: cisco model: cisco ios
vendor: cisco model: cisco ios xe
vendor: cisco model: wireless controller

BitLocker Encryption Bypassed in Minutes Using Bitpixie Vulnerability

Trust: 3.0

Fetched: May 16, 2025, 9:26 a.m., Published: May 15, 2025, 6:30 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2023-21563

Siemens BACnet ATEC Devices | CISA

Trust: 4.75

Fetched: May 16, 2025, 9:26 a.m., Published: Jan. 10, 2023, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2025-40556

Update Canonical Ubuntu Desktop: USN-7503-1: h11 vulnerability

Trust: 4.0

Fetched: May 14, 2025, 9:16 a.m., Published: Jan. 14, 7503, midnight
 Vulnerabilities: information leakage
Affected productsExternal IDs
vendor: canonical model: ubuntu

Cisco IOS XE Software Privilege Escalation Vulnerabilities

Trust: 4.0

Fetched: May 14, 2025, 9:16 a.m., Published: May 7, 2025, 3:52 p.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: cisco model: ios xe
vendor: cisco model: cisco ios
vendor: cisco model: cisco ios xe
vendor: cisco model: ios xe software

2025 May KB5058411 KB5058405 Windows 11 Patch 7 Zero Day Vulnerabilities And 72 Flaws HTMD Blog

Trust: 3.5

Fetched: May 14, 2025, 9:14 a.m., Published: May 13, 2025, 6:46 p.m.
 Vulnerabilities: code execution, memory corruption
Affected productsExternal IDs
db: NVD ids: CVE-2025-32706, CVE-2025-32701, CVE-2025-32709, CVE-2025-32702, CVE-2025-30400, CVE-2025-26685, CVE-2025-30397

CVE-2024-11120 - GeoVision Devices OS Command Injection Vulnerability | ScyScan

Trust: 5.0

Fetched: May 14, 2025, 9:14 a.m., Published: May 7, 2025, midnight
 Vulnerabilities: os command injection, command injection
Affected productsExternal IDs
db: NVD ids: CVE-2024-11120

Cisco IOS, IOS XE, and IOS XR Software TWAMP Denial of Service Vulnerability

Trust: 3.5

Fetched: May 14, 2025, 9:08 a.m., Published: May 7, 2025, 3:53 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: cisco ios
vendor: cisco model: ios xr software
vendor: cisco model: ios xe
vendor: cisco model: ios xe software
vendor: cisco model: ios xr

Windows 11 Escalation Vulnerability Let Attackers Gain Admin Access

Trust: 4.25

Fetched: May 14, 2025, 9:06 a.m., Published: April 16, 2025, 5:38 a.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2025-24994, CVE-2025-24076