Sign-up

VARIoT news about IoT security

CVE-2025-55280 | TenableĀ®

Trust: 3.25

Fetched: Aug. 13, 2025, 6:27 p.m., Published: Aug. 13, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-55280

SonicWall Alert: Critical SSL VPN Flaw (CVE-2025-40600) Allows Remote DoS Attack on Firewalls

Trust: 5.5

Fetched: Aug. 13, 2025, 6:26 p.m., Published: July 30, 2025, 12:07 a.m.
 Vulnerabilities: format string vulnerability, service disruption, denial of service
Affected productsExternal IDs
vendor: sonicwall model: sonicos
vendor: sonicwall model: ssl vpn
db: NVD ids: CVE-2025-40600

Urgent Alert: Critical Command Injection Vulnerability Affects Ubiquiti UniFi Devices - What You Need to Know - Blue Chip Technologies Ltd.

Trust: 5.25

Fetched: Aug. 13, 2025, 6:25 p.m., Published: July 21, 2025, 10:54 a.m.
 Vulnerabilities: code injection, privilege escalation, command injection
Affected productsExternal IDs
vendor: snort model: snort
vendor: ubiquiti model: unifi
db: NVD ids: CVE-2025-27212, CVE-2024-27981

CVE-2025-30127: Critical Security Vulnerability in Marbella KR8s Dashcam FF 2.0.8 - Cybersecurity Exploit Tracker by Ameeba

Trust: 3.25

Fetched: Aug. 13, 2025, 6:25 p.m., Published: Nov. 30, 0001, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-30127

The Root(ing) Of All Evil: Security Holes That Could Compromise Your Mobile Device

Trust: 3.75

Fetched: Aug. 13, 2025, 6:23 p.m., Published: Aug. 13, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2024-48336

Safeguarding Patient Data: Four Steps to Consider When Assessing Your IT Infrastructure - MedTechNews

Trust: 3.75

Fetched: Aug. 13, 2025, 6:22 p.m., Published: Aug. 13, 2025, 6:42 a.m.
 Vulnerabilities: default password
Affected productsExternal IDs
vendor: essential model: phone

CVE-2025-55279 : Hard-coded Key Vulnerability in ZKTeco WL20 Device

Trust: 3.0

Fetched: Aug. 13, 2025, 6:22 p.m., Published: Aug. 13, 2025, 11:23 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-55279

CVE-2025-55280 - ZKTeco WL20 PlainText Data Exposure Vulnerability

Trust: 3.0

Fetched: Aug. 13, 2025, 6:22 p.m., Published: Aug. 13, 2025, 12:15 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-55280

Cyber Threat Intelligence Report | 8/11/2025 | PacketWatch

Related entries in the VARIoT vulnerabilities database: VAR-202009-0782, VAR-202211-1888, VAR-202009-0783

Trust: 4.25

Fetched: Aug. 13, 2025, 6:21 p.m., Published: Aug. 11, 2025, midnight
 Vulnerabilities: request forgery, cross-site request forgery, access control flaw...
Affected productsExternal IDs
vendor: d-link model: dnr-322l
vendor: d-link model: dcs-2670l
vendor: d-link model: dcs-2530l
vendor: cisco model: identity services engine
vendor: cisco model: cisco identity services engine
vendor: trend micro model: security
vendor: sonicwall model: remote access
vendor: sonicwall model: ssl vpn
vendor: trend model: security
db: NVD ids: CVE-2025-53786, CVE-2025-54948, CVE-2025-8088, CVE-2020-25078, CVE-2025-20281, CVE-2025-20337, CVE-2022-40799, CVE-2020-25079, CVE-2025-54987, CVE-2023-2533, CVE-2024-40766

7,000 Citrix NetScaler Devices Still Vulnerable to CVE-2025-5777 and CVE-2025-6543

Trust: 4.0

Fetched: Aug. 13, 2025, 6:21 p.m., Published: Aug. 12, 2025, 1 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: citrix model: netscaler
db: NVD ids: CVE-2025-6543, CVE-2025-5777

TCP Port 5000: The UPnP Vulnerability You Forgot About

Related entries in the VARIoT vulnerabilities database: VAR-202006-0391

Trust: 3.0

Fetched: Aug. 13, 2025, 6:20 p.m., Published: Aug. 12, 2025, 8:16 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2020-12695

Security Bulletins for HUAWEI Phones/Tablets, August 2025

Trust: 4.25

Fetched: Aug. 13, 2025, 6:20 p.m., Published: July 30, 2025, 3:56 p.m.
 Vulnerabilities: input verification vulnerability, authentication bypass, buffer overflow...
Affected productsExternal IDs
vendor: huawei model: huawei
vendor: huawei model: emui
db: NVD ids: CVE-2025-54643, CVE-2025-54609, CVE-2025-54611, CVE-2025-54610, CVE-2025-54616, CVE-2025-54633, CVE-2025-54636, CVE-2025-54644, CVE-2025-54638, CVE-2025-54651, CVE-2025-54606, CVE-2025-54614, CVE-2025-54623, CVE-2025-54617, CVE-2025-54608, CVE-2025-54624, CVE-2025-54625, CVE-2025-54639, CVE-2025-54622, CVE-2025-54647, CVE-2025-54618, CVE-2025-54630, CVE-2025-54642, CVE-2025-54612, CVE-2025-54613, CVE-2025-54640, CVE-2025-54626, CVE-2025-54650, CVE-2025-54631, CVE-2025-54615, CVE-2025-54621, CVE-2025-54645, CVE-2025-54629, CVE-2025-54620, CVE-2025-54619, CVE-2025-54637, CVE-2025-54649, CVE-2025-54641, CVE-2025-54635, CVE-2025-54628, CVE-2025-54634, CVE-2025-54627, CVE-2025-54632, CVE-2025-54648, CVE-2025-54646, CVE-2025-54607

CVE-2025-54465 | TenableĀ®

Trust: 3.25

Fetched: Aug. 13, 2025, 6:19 p.m., Published: Aug. 13, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-54465

CVE-2025-54465 - ZKTeco WL20 Hard-Coded MQTT Credentials Disclosure

Trust: 3.0

Fetched: Aug. 13, 2025, 6:19 p.m., Published: Aug. 13, 2025, 12:15 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-54465

Windows 11 KB5063878 KB5063875 August 2025 Patch And 1 Zero Day Vulnerability And 107 Flaws HTMD Blog

Trust: 3.5

Fetched: Aug. 13, 2025, 6:18 p.m., Published: Aug. 12, 2025, 5:54 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: home
vendor: google model: google chrome
vendor: google model: chrome
db: NVD ids: CVE-2025-53779

CVE-2025-55280 : Security Flaw in ZKTeco WL20 Device Reveals Sensitive Data

Trust: 3.0

Fetched: Aug. 13, 2025, 6:18 p.m., Published: Aug. 13, 2025, 11:38 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-55280

CVE-2025-54465 : Security Vulnerability in ZKTeco WL20 IoT Device

Trust: 3.0

Fetched: Aug. 13, 2025, 6:18 p.m., Published: Aug. 13, 2025, 11:17 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-54465

Windows 10 KB5063709 August 2025 Patch And 1 Zero Day Vulnerability And 107 Flaws HTMD Blog

Trust: 3.5

Fetched: Aug. 13, 2025, 6:17 p.m., Published: Aug. 12, 2025, 6:05 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: google chrome
vendor: google model: chrome
db: NVD ids: CVE-2025-53779

Comprehensive Analysis of Security Challenges and Mitigation Strategies for IoT Healthcare Devices - MedTechNews

Trust: 3.5

Fetched: Aug. 13, 2025, 6:15 p.m., Published: Aug. 12, 2025, 11:21 p.m.
 Vulnerabilities: default credentials, information disclosure, code execution...
Affected productsExternal IDs
vendor: essential model: phone

Millions of Dell laptops could be persistently backdoored in ReVault attacks - Help Net Security

Trust: 5.5

Fetched: Aug. 13, 2025, 6:13 p.m., Published: Aug. 5, 2025, 6:14 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: cisco model: device manager
vendor: dell model: bios
vendor: dell model: latitude 5550
vendor: dell model: latitude 7350
vendor: dell model: latitude 5450
vendor: dell model: latitude
vendor: dell model: latitude 5420
db: NVD ids: CVE-2025-25215, CVE-2025-24922, CVE-2025-24311, CVE-2025-24919, CVE-2025-25050