Sign-up

VARIoT news about IoT security

Samsung's July Security Update Arrives, Brings Mysterious Chip Fix

Trust: 4.75

Fetched: July 13, 2025, 9:36 a.m., Published: July 8, 2025, 5:12 p.m.
 Vulnerabilities: improper access control
Affected productsExternal IDs
vendor: google model: android
vendor: google model: pixel
vendor: samsung model: galaxy
vendor: samsung model: samsung
db: NVD ids: CVE-2025-47202

Critical CVE-2025-49689 Vulnerability Affects Windows Systems

Trust: 4.25

Fetched: July 13, 2025, 9:35 a.m., Published: July 12, 2025, 4:57 p.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2025-49689, CVE-2017-0263, CVE-2024-43629

Threat detection in smart homes: A sociotechnical multimodal conversational approach for improved cyber situational awareness | International Journal of Information Security

Trust: 4.25

Fetched: July 13, 2025, 9:32 a.m., Published: July 11, 2025, midnight
 Vulnerabilities: information leakage

Get started with Google Play - Android - Google Play Help

Trust: 3.25

Fetched: July 13, 2025, 9:17 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Copy apps & data from an Android to a new Android device - Android Help

Trust: 3.0

Fetched: July 13, 2025, 9:17 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Download apps & digital content - Google Play Help

Trust: 3.0

Fetched: July 13, 2025, 9:16 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Download and install Google Chrome - Computer - Google Chrome Help

Trust: 3.0

Fetched: July 13, 2025, 9:15 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: google chrome
vendor: google model: chrome

Download photos or videos to your device - Computer - Google Photos Help

Trust: 3.0

Fetched: July 13, 2025, 9:14 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: chrome

Sync Google Contacts with your mobile device or computer - Android - Contacts Help

Trust: 3.0

Fetched: July 13, 2025, 9:14 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Download the YouTube app - Android - YouTube Help

Trust: 3.5

Fetched: July 13, 2025, 9:14 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
vendor: apple model: apple tv

Download and install Google Chrome - Computer - Google Chrome Help

Trust: 3.0

Fetched: July 13, 2025, 9:13 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: google chrome
vendor: google model: chrome

Remote code execution vulnerabilities found in vehicles - Cyber Risk Leaders

Trust: 3.5

Fetched: July 11, 2025, 9:42 a.m., Published: July 11, 2025, 2:16 a.m.
 Vulnerabilities: privilege escalation, code execution
Affected productsExternal IDs

CVE-2025-49724 : Remote Code Execution Vulnerability in Windows Connected Devices Platform Service

Trust: 4.25

Fetched: July 11, 2025, 9:41 a.m., Published: July 8, 2025, 4:58 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-49724

CVE-2025-37103 - HPE Networking Instant On Access Points Hard-Coded Login Credentials Vulnerability

Trust: 3.25

Fetched: July 11, 2025, 9:41 a.m., Published: July 8, 2025, 8:15 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-37103

Microsoft Patch Tuesday July 2025: 130 Vulnerabilities Fixed Including 41 RCE

Trust: 3.75

Fetched: July 11, 2025, 9:35 a.m., Published: July 8, 2025, 5:20 p.m.
 Vulnerabilities: denial of service, feature bypass, information disclosure...
Affected productsExternal IDs
db: NVD ids: CVE-2025-47972, CVE-2025-48818, CVE-2025-47985, CVE-2025-47991, CVE-2025-48823, CVE-2025-48817, CVE-2025-36350, CVE-2025-48806, CVE-2025-36357, CVE-2025-48003, CVE-2025-47178, CVE-2025-49683, CVE-2025-49740, CVE-2025-49689, CVE-2025-49729, CVE-2025-48824, CVE-2025-49725, CVE-2025-48809, CVE-2025-49668, CVE-2025-49659, CVE-2025-49682, CVE-2025-49670, CVE-2025-49731, CVE-2025-48819, CVE-2025-48821, CVE-2025-47998, CVE-2025-48802, CVE-2025-47988, CVE-2025-48800, CVE-2025-49695, CVE-2025-47999, CVE-2025-49701, CVE-2025-49673, CVE-2025-49739, CVE-2025-48811, CVE-2025-47975, CVE-2025-49730, CVE-2025-49690, CVE-2025-49663, CVE-2025-49667, CVE-2025-49735, CVE-2025-49664, CVE-2025-33054, CVE-2025-47159, CVE-2025-49691, CVE-2025-49678, CVE-2025-48000, CVE-2025-49732, CVE-2025-48002, CVE-2025-48810, CVE-2025-49718, CVE-2025-49733, CVE-2025-49737, CVE-2025-47980, CVE-2025-48808, CVE-2025-49671, CVE-2025-49674, CVE-2025-49666, CVE-2025-47971, CVE-2025-48816, CVE-2025-49699, CVE-2025-49680, CVE-2025-49711, CVE-2025-49704, CVE-2025-49702, CVE-2025-49727, CVE-2025-48805, CVE-2025-47982, CVE-2025-49677, CVE-2025-49676, CVE-2025-49669, CVE-2025-49717, CVE-2025-48814, CVE-2025-48001, CVE-2025-49679, CVE-2025-49722, CVE-2025-49714, CVE-2025-49672, CVE-2025-49688, CVE-1980-0000, CVE-2025-49719, CVE-2025-48815, CVE-2025-26636, CVE-2025-49721, CVE-2025-48804, CVE-2025-49700, CVE-2025-49697, CVE-2025-49698, CVE-2025-48799, CVE-2025-49693, CVE-2025-49703, CVE-2024-36350, CVE-2025-49726, CVE-2025-49705, CVE-2025-49660, CVE-2025-47981, CVE-2025-49694, CVE-2025-49685, CVE-2025-49686, CVE-2025-49724, CVE-2025-49753, CVE-2025-47993, CVE-2025-49665, CVE-2025-49661, CVE-2025-49756, CVE-2025-49658, CVE-2025-49684, CVE-2025-48822, CVE-2025-47976, CVE-2025-49723, CVE-2025-49687, CVE-2025-47994, CVE-2025-47987, CVE-2025-47973, CVE-2025-49681, CVE-2025-49744, CVE-2025-49716, CVE-2025-47986, CVE-2025-49657, CVE-2025-48812, CVE-2025-49675, CVE-2025-49706, CVE-2025-48820, CVE-2025-48803, CVE-2025-49696, CVE-2025-47984, CVE-2025-49760, CVE-2025-49738, CVE-2025-47996, CVE-2025-21195, CVE-2025-49742

Security Advisory for Remote Command Execution and CSRF Vulnerabilities on DGN2200 - NETGEAR Support

Related entries in the VARIoT vulnerabilities database: VAR-201702-0952, VAR-201703-1017

Trust: 4.5

Fetched: July 11, 2025, 9:34 a.m., Published: -
 Vulnerabilities: default administrator password, default password, command execution...
Affected productsExternal IDs
vendor: netgear model: wndr3300
vendor: netgear model: dgn2200v1
vendor: netgear model: dgn2200v2
vendor: netgear model: wnr834bv2
vendor: netgear model: dgn2200
vendor: netgear model: router
vendor: netgear model: wnr3500
db: NVD ids: CVE-2017-6077, CVE-2017-6334

ERROR: The request could not be satisfied

Trust: 3.25

Fetched: July 11, 2025, 9:34 a.m., Published: -
 Vulnerabilities: configuration error
Affected productsExternal IDs

Cisco Identity Services Engine Arbitrary File Upload Vulnerability - Cisco

Trust: 5.0

Fetched: July 11, 2025, 9:34 a.m., Published: July 8, 2025, 11:28 p.m.
 Vulnerabilities: file upload vulnerability
Affected productsExternal IDs
vendor: cisco model: cisco identity services engine
vendor: cisco model: identity services engine

CVE-2025-3499 : OS Command Injection Vulnerability in Device Management Servers by Vendor

Trust: 4.0

Fetched: July 11, 2025, 9:33 a.m., Published: July 9, 2025, 8:57 a.m.
 Vulnerabilities: command injection, os command injection
Affected productsExternal IDs
db: NVD ids: CVE-2025-3499

Citrix Patches Critical CVE-2025-6543 Vulnerability in NetScaler ADC Amid Active Exploitation

Trust: 5.5

Fetched: July 11, 2025, 9:33 a.m., Published: June 26, 2025, 2:06 p.m.
 Vulnerabilities: service disruption, code execution
Affected productsExternal IDs
vendor: citrix model: netscaler gateway
vendor: citrix model: application delivery controller
vendor: citrix model: netscaler
vendor: citrix model: netscaler adc
vendor: citrix model: gateway
db: NVD ids: CVE-2025-6543