Sign-up

VARIoT news about IoT security

Brute-force attacks hammer Fortinet devices worldwide - Help Net Security

Trust: 3.75

Fetched: Aug. 15, 2025, 9:23 a.m., Published: Aug. 14, 2025, 1:47 p.m.
 Vulnerabilities: path traversal, code execution
Affected productsExternal IDs
vendor: fortigate model: fortios

FortiOS, FortiProxy, and FortiPAM Auth Bypass Vulnerability Allows Attackers to Gain Full Control

Trust: 6.0

Fetched: Aug. 15, 2025, 9:23 a.m., Published: Aug. 13, 2025, 8:41 a.m.
 Vulnerabilities: command execution, authentication bypass, authentication flaw
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2024-26009

7000+ Citrix NetScaler Devices Still Vulnerable to CVE-2025-5777 and CVE-2025-6543

Trust: 4.5

Fetched: Aug. 15, 2025, 9:23 a.m., Published: Aug. 12, 2025, 2:59 p.m.
 Vulnerabilities: buffer overflow, denial of service, code execution
Affected productsExternal IDs
vendor: citrix model: netscaler
vendor: citrix model: gateway
db: NVD ids: CVE-2025-6543, CVE-2025-5777

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software for Firepower 3100 and 4200 Series TLS 1.3 Cipher Denial of Service Vulnerability - Cisco

Trust: 3.75

Fetched: Aug. 15, 2025, 9:22 a.m., Published: Aug. 14, 2025, 11:05 a.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: adaptive security appliance
vendor: cisco model: asa software
vendor: cisco model: series
vendor: cisco model: firepower

SSA-978177

Trust: 5.5

Fetched: Aug. 15, 2025, 9:22 a.m., Published: Aug. 1, 2025, midnight
 Vulnerabilities: command injection, os command injection, privilege escalation
Affected productsExternal IDs
vendor: nozomi model: guardian
vendor: nozomi model: networks guardian
db: NVD ids: CVE-2024-13089, CVE-2024-13090

CVE-2025-31701 - Dahua Network Device Buffer Overflow Vulnerability

Trust: 4.75

Fetched: Aug. 15, 2025, 9:22 a.m., Published: July 23, 2025, 7:15 a.m.
 Vulnerabilities: service disruption, buffer overflow, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-31701

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Access Control Rules Bypass Vulnerability

Trust: 3.0

Fetched: Aug. 15, 2025, 9:21 a.m., Published: Aug. 14, 2025, 3:53 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: asa software
vendor: cisco model: adaptive security appliance

Cisco Patches Three Critical Vulnerabilities - Get the Details

Trust: 4.75

Fetched: Aug. 15, 2025, 9:21 a.m., Published: July 25, 2025, noon
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: trend model: security
vendor: cisco model: identity services engine
vendor: cisco model: cisco identity services engine
vendor: trend micro model: security
db: NVD ids: CVE-2025-20337, CVE-2025-20281, CVE-2025-20282

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software SSL/TLS Certificate Denial of Service Vulnerability

Trust: 3.75

Fetched: Aug. 15, 2025, 9:20 a.m., Published: Aug. 14, 2025, 3:53 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: asa software
vendor: cisco model: adaptive security appliance

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Network Address Translation DNS Inspection Denial of Service Vulnerability

Trust: 3.75

Fetched: Aug. 15, 2025, 9:20 a.m., Published: Aug. 14, 2025, 3:53 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: asa software
vendor: cisco model: adaptive security appliance

Cisco Secure Firewall Management Center Software XPATH Injection Vulnerability

Trust: 3.25

Fetched: Aug. 15, 2025, 9:19 a.m., Published: Aug. 14, 2025, 3:53 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: asa software

Hackers Could Gain Full Control of Your Rooted Android Devices by

Trust: 3.5

Fetched: Aug. 15, 2025, 9:18 a.m., Published: Aug. 14, 2025, 12:45 p.m.
 Vulnerabilities: privilege escalation, authentication vulnerability
Affected productsExternal IDs
vendor: google model: android

CVE-2025-5095: Critical Authentication Bypass Vulnerability in Burk Technology ARC Solo - Cybersecurity Exploit Tracker by Ameeba

Trust: 6.0

Fetched: Aug. 15, 2025, 9:18 a.m., Published: Nov. 30, 0001, midnight
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
vendor: essential model: phone
db: NVD ids: CVE-2025-5095

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software for Firepower 2100 Series IPv6 over IPsec Denial of Service Vulnerability - Cisco

Trust: 4.75

Fetched: Aug. 15, 2025, 9:17 a.m., Published: Aug. 14, 2025, 11:05 a.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: asa software
vendor: cisco model: firepower
vendor: cisco model: firepower 2100
vendor: cisco model: adaptive security appliance
vendor: cisco model: series

Sonicwall fixes critical flaw in SMA appliances, urges customers to check for compromise (CVE-2025-40599) - Help Net Security

Trust: 4.75

Fetched: Aug. 15, 2025, 9:17 a.m., Published: July 24, 2025, 10:11 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: sonicwall model: sma 100
vendor: sonicwall model: switch
vendor: sonicwall model: ssl vpn
vendor: sonicwall model: sma100
vendor: sonicwall model: ssl-vpn
vendor: sonicwall model: web application firewall
vendor: sonicwall model: remote access
vendor: sonicwall model: sma1000
vendor: sonicwall model: secure mobile access
db: NVD ids: CVE-2025-40599

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Access Control Rules Bypass Vulnerability - Cisco

Trust: 3.0

Fetched: Aug. 15, 2025, 9:16 a.m., Published: Aug. 14, 2025, 11:05 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: asa software
vendor: cisco model: adaptive security appliance

The Growing Threat of IoT Malware - When Smart Devices Turn Against You - Info Security Solution

Trust: 3.5

Fetched: Aug. 15, 2025, 9:16 a.m., Published: Aug. 14, 2025, 3:01 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: ring model: video doorbell
vendor: ring model: ring video doorbell
vendor: trend model: security

Out-of-Bounds Access Vulnerability in Linux Kernel - CVE-2025-38395

Trust: 4.0

Fetched: Aug. 15, 2025, 9:15 a.m., Published: Aug. 11, 2025, midnight
 Vulnerabilities: bounds access vulnerability
Affected productsExternal IDs
db: NVD ids: CVE-2025-38395

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software DHCP Denial of Service Vulnerability - Cisco

Trust: 3.75

Fetched: Aug. 15, 2025, 9:15 a.m., Published: Aug. 14, 2025, 11:05 a.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: asa software
vendor: cisco model: device manager
vendor: cisco model: adaptive security appliance

CISA Warns of Exploited Vulnerabilities in Cisco Products - Infosecurity Magazine

Trust: 5.5

Fetched: Aug. 15, 2025, 9:14 a.m., Published: July 29, 2025, 1:15 p.m.
 Vulnerabilities: request forgery, cross-site request forgery
Affected productsExternal IDs
vendor: trend micro model: security
vendor: trend model: security
vendor: cisco model: identity services engine
vendor: cisco model: cisco identity services engine
db: NVD ids: CVE-2025-20337, CVE-2025-20281, CVE-2023-2533