Sign-up

VARIoT news about IoT security

Networking Essentials: Course Final Exam Answers

Trust: 4.0

Fetched: June 6, 2025, 9:33 a.m., Published: June 2, 2025, 8:37 a.m.
 Vulnerabilities: buffer overflow, brute force attack, system crash...
Affected productsExternal IDs
vendor: mesh model: mesh
vendor: apple model: macos
vendor: google model: android
vendor: google model: home
vendor: trend model: data loss prevention
vendor: trend model: security
vendor: dram model: dram
vendor: cisco model: router
vendor: cisco model: cisco ios
vendor: cisco model: 1100
vendor: cisco model: eigrp
vendor: cisco model: routers
vendor: cisco model: device manager
vendor: cisco model: access points
vendor: cisco model: ios software
vendor: cisco model: intrusion prevention system
vendor: cisco model: ip phones
vendor: cisco model: wireless access point
vendor: cisco model: meeting
vendor: cisco model: cisco routers
vendor: hybrid model: cable modem

CVE-2025-20163 : SSH Implementation Vulnerability in Cisco Nexus Dashboard Fabric Controller

Trust: 4.0

Fetched: June 6, 2025, 9:33 a.m., Published: June 4, 2025, 4:17 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: nexus
vendor: cisco model: data center network manager
vendor: cisco model: cisco data center network manager
db: NVD ids: CVE-2025-20163

Qualcomm Fixes Zero-Day Security Vulnerabilities Used By Hackers, Cybercriminals | Technology News

Trust: 5.0

Fetched: June 6, 2025, 9:32 a.m., Published: June 4, 2025, 8:59 a.m.
 Vulnerabilities: use after free
Affected productsExternal IDs
vendor: google model: pixel
db: NVD ids: CVE-2025-27038, CVE-2025-21480, CVE-2025-21479

Google Releases June Security Bulletin for Android Devices to Fix Vulnerabilities | Robinson+Cole Data Privacy + Security Insider - JDSupra

Trust: 3.0

Fetched: June 6, 2025, 9:27 a.m., Published: June 6, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Critical 0-Day Vulnerabilities in Qualcomm Adreno GPU Drivers Actively Exploited - Intrucept

Trust: 5.5

Fetched: June 6, 2025, 9:26 a.m., Published: June 4, 2025, 10:24 a.m.
 Vulnerabilities: memory corruption, authorization vulnerability, command execution...
Affected productsExternal IDs
vendor: samsung model: mobile
vendor: samsung model: samsung
vendor: oneplus model: oneplus
vendor: google model: chrome
vendor: google model: android
db: NVD ids: CVE-2025-27038, CVE-2025-21480, CVE-2025-21479

Samsung Details June 2025 Security Patch with Key Vulnerability Fixes

Trust: 3.75

Fetched: June 6, 2025, 9:26 a.m., Published: June 5, 2025, 7:09 p.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: google model: android
vendor: samsung model: mobile
vendor: samsung model: samsung galaxy
vendor: samsung model: mobile devices
vendor: samsung model: samsung
vendor: samsung model: galaxy

Cisco Unified Contact Center Express Editor Remote Code Execution Vulnerability

Trust: 4.75

Fetched: June 6, 2025, 9:26 a.m., Published: June 4, 2025, 3:54 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: cisco model: unified ccx
vendor: cisco model: cisco unified contact center express
vendor: cisco model: unified contact center express

Qualcomm Issues Emergency Fix for Zero-Day Exploit in Android Devices

Trust: 4.75

Fetched: June 6, 2025, 9:25 a.m., Published: June 4, 2025, 10:27 a.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: samsung model: samsung
vendor: samsung model: exynos
vendor: google model: pixel
vendor: google model: android
db: NVD ids: CVE-2025-27038, CVE-2025-21480, CVE-2025-21479

How to Use Shodan for Pentesting: A Step-By-Step Guide

Trust: 4.25

Fetched: June 6, 2025, 9:24 a.m., Published: Aug. 17, 2023, 12:30 p.m.
 Vulnerabilities: code execution, default credentials
Affected productsExternal IDs
vendor: cisco model: routers
vendor: cisco model: small business
vendor: cisco model: ip phones
vendor: zoom model: client

ASUS Official Statement on Recent Reports Regarding Router Security | News|ASUS USA

Related entries in the VARIoT vulnerabilities database: VAR-202309-0729

Trust: 4.5

Fetched: June 6, 2025, 9:24 a.m., Published: June 4, 2025, midnight
 Vulnerabilities: weak password
Affected productsExternal IDs
vendor: asus model: asus
vendor: asus model: routers
vendor: asus model: router
db: NVD ids: CVE-2023-39780

Critical Vulnerabilities in Hitachi Energy’s Relion & SAM600-IO Devices Threaten Power Grid Security | Windows Forum

Trust: 5.5

Fetched: June 6, 2025, 9:10 a.m., Published: May 6, 2025, midnight
 Vulnerabilities: memory corruption, integer overflow, denial of service...
Affected productsExternal IDs
vendor: rapid model: scada
db: NVD ids: CVE-2020-28895, CVE-2020-35198

UEFI Firmware Crisis: Cryptographic Key Mismanagement Exposes Global Device Vulnerabilities - UNDERCODE NEWS

Trust: 4.5

Fetched: June 6, 2025, 9:10 a.m., Published: May 13, 2025, 10:46 a.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: lenovo model: system
vendor: lenovo model: updates
db: NVD ids: CVE-2025-3052

Cisco Integrated Management Controller Privilege Escalation Vulnerability

Trust: 4.0

Fetched: June 6, 2025, 9:09 a.m., Published: June 4, 2025, 3:54 p.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: cisco model: integrated management controller
vendor: cisco model: cisco integrated management controller
vendor: cisco model: ucs manager
vendor: cisco model: series

Cisco Nexus Dashboard Fabric Controller Vulnerability Allows Attackers Device Impersonate as Managed Devices

Trust: 5.75

Fetched: June 6, 2025, 9:09 a.m., Published: June 5, 2025, 5:20 p.m.
 Vulnerabilities: device impersonation
Affected productsExternal IDs
vendor: cisco model: data center network manager
vendor: cisco model: nexus
vendor: cisco model: cisco data center network manager
db: NVD ids: CVE-2025-20163

Cisco Nexus Dashboard Fabric Controller SSH Host Key Validation Vulnerability

Trust: 3.0

Fetched: June 6, 2025, 9:08 a.m., Published: June 4, 2025, 3:54 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: nexus

Access Remote IoT Free On Android: Your SSH Guide

Trust: 3.5

Fetched: June 4, 2025, 9:31 a.m., Published: May 13, 2025, 8:17 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
vendor: google model: home
vendor: raspberry pi model: 3
vendor: essential model: phone

End-to-End Encryption: Technological and Human Factor Perspectives | SpringerLink

Trust: 3.0

Fetched: June 4, 2025, 9:30 a.m., Published: June 4, 2025, midnight
 Vulnerabilities: -

Apple Alert: Critical AirPlay Vulnerabilities Expose Millions to Cyber Threats - CyberHoot

Trust: 5.5

Fetched: June 4, 2025, 9:29 a.m., Published: May 15, 2025, 3:24 p.m.
 Vulnerabilities: denial of service, control bypass, code execution
Affected productsExternal IDs
vendor: apple model: watchos
vendor: apple model: macos
vendor: apple model: tvos
db: NVD ids: CVE-2025-24252, CVE-2025-24132, CVE-2025-24206

CVE-2025-49163 : Bootloader Vulnerability in Arris VIP1113 Devices Using KreaTV SDK

Trust: 3.0

Fetched: June 4, 2025, 9:28 a.m., Published: June 3, 2025, 12:15 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-49163

CVE-2025-31217 : Input Validation Vulnerability in Safari Affecting Apple Devices

Trust: 6.25

Fetched: June 4, 2025, 9:23 a.m., Published: May 12, 2025, 9:42 p.m.
 Vulnerabilities: input validation vulnerability
Affected productsExternal IDs
vendor: apple model: safari
db: NVD ids: CVE-2025-31217