Sign-up

VARIoT news about IoT security

ERROR: The request could not be satisfied

Trust: 3.25

Fetched: Nov. 4, 2025, 9:37 a.m., Published: -
 Vulnerabilities: configuration error
Affected productsExternal IDs

2025: Linux Kernel Vulnerabilities Overview and Exploits

Trust: 5.25

Fetched: Nov. 4, 2025, 9:36 a.m., Published: Nov. 4, 2025, midnight
 Vulnerabilities: memory leak, information leakage, privilege escalation...
Affected productsExternal IDs
vendor: google model: android
vendor: alsa model: alsa
db: NVD ids: CVE-2025-38352, CVE-2024-53150, CVE-2024-50302, CVE-2024-53197, CVE-2024-53104, CVE-2021-22555, CVE-2023-0386

CVE-2025-55677 - Windows Device Association Broker Service Elevation of Privilege Vulnerability - SecAlerts

Trust: 3.25

Fetched: Nov. 4, 2025, 9:36 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-55677

A major evolution of Apple Security Bounty, with the industry's top awards for the most advanced research - Apple Security Research

Trust: 4.5

Fetched: Nov. 4, 2025, 9:34 a.m., Published: Oct. 10, 2025, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: webkit
vendor: apple model: macos
vendor: apple model: safari
vendor: apple model: tvos
vendor: apple model: watchos
vendor: apple model: icloud
vendor: apple model: iphone

Patch Tuesday, October 2025 ‘End of 10’ Edition - Krebs on Security

Trust: 4.25

Fetched: Nov. 4, 2025, 9:32 a.m., Published: Oct. 7, 2025, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-59234, CVE-2025-59230, CVE-2025-59287, CVE-2025-59227, CVE-2025-24990

Update Canonical Ubuntu Server: USN-7841-1: strongSwan vulnerability

Trust: 4.25

Fetched: Nov. 4, 2025, 9:32 a.m., Published: Jan. 4, 7841, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: canonical model: ubuntu

Microsoft and Adobe Patch Tuesday, October 2025 Security Update Review | Qualys

Related entries in the VARIoT vulnerabilities database: VAR-202510-3116

Trust: 4.5

Fetched: Nov. 4, 2025, 9:30 a.m., Published: Oct. 14, 2025, 7:19 p.m.
 Vulnerabilities: privilege escalation, code execution, access control flaw...
Affected productsExternal IDs
db: NVD ids: CVE-2025-11208, CVE-2025-11207, CVE-2025-48004, CVE-2025-55676, CVE-2025-59502, CVE-2025-59189, CVE-2025-11212, CVE-2025-11209, CVE-2025-55690, CVE-2025-55684, CVE-2025-11210, CVE-2025-59199, CVE-2025-55315, CVE-2025-55247, CVE-2025-59210, CVE-2025-55328, CVE-2025-53717, CVE-2025-59249, CVE-2025-59206, CVE-2025-55700, CVE-2025-59284, CVE-2025-49708, CVE-2025-55688, CVE-2025-55694, CVE-2025-59248, CVE-2025-58717, CVE-2025-11213, CVE-2025-55326, CVE-2025-59282, CVE-2025-55335, CVE-2025-55687, CVE-2025-11216, CVE-2025-59209, CVE-2025-11219, CVE-2025-59191, CVE-2025-58722, CVE-2025-11458, CVE-2025-55689, CVE-2025-58718, CVE-2025-59261, CVE-2025-11211, CVE-2025-55680, CVE-2025-59198, CVE-2025-58714, CVE-2025-11206, CVE-2025-59254, CVE-2025-59255, CVE-2025-59190, CVE-2025-55331, CVE-2025-11215, CVE-2025-55691, CVE-2025-58727, CVE-2025-59211, CVE-2025-55693, CVE-2025-55692, CVE-2025-11460, CVE-2025-59195, CVE-2025-59253, CVE-2025-55685, CVE-2025-58719, CVE-2025-11205, CVE-2025-59205, CVE-2025-2884, CVE-2025-59287, CVE-2025-59295, CVE-2025-59194, CVE-2025-59242, CVE-2025-55681, CVE-2025-55686, CVE-2025-53782

New Bitdefender and NETGEAR Report Reveals Rising Threats Across the Connected Home Landscape

Trust: 4.25

Fetched: Nov. 4, 2025, 9:30 a.m., Published: Oct. 29, 2025, midnight
 Vulnerabilities: code execution, privilege escalation
Affected productsExternal IDs
vendor: netgear model: router
vendor: netgear model: orbi
vendor: mesh model: mesh

Google's AI 'Big Sleep' Finds 5 New Vulnerabilities in Apple's Safari WebKit

Trust: 4.5

Fetched: Nov. 4, 2025, 9:30 a.m., Published: Nov. 4, 2025, 8:10 a.m.
 Vulnerabilities: memory corruption, process crash, buffer overflow
Affected productsExternal IDs
vendor: apple model: webkit
vendor: apple model: macos
vendor: apple model: safari
vendor: apple model: ipad
vendor: apple model: tvos
vendor: apple model: watchos
vendor: apple model: ipad air
vendor: apple model: watch
vendor: apple model: apple tv
vendor: apple model: iphone
db: NVD ids: CVE-2025-43433, CVE-2025-43430, CVE-2025-43434, CVE-2025-43429, CVE-2025-43431, CVE-2025-6965

Should you ditch your TP-Link router? Here's how to secure your Wi-Fi today | ZDNET

Trust: 4.25

Fetched: Nov. 4, 2025, 9:29 a.m., Published: Nov. 7, 2025, midnight
 Vulnerabilities: default credentials, denial of service
Affected productsExternal IDs
vendor: mesh model: mesh
vendor: tp-link model: routers
vendor: google model: home
vendor: tp link model: routers

Apple Patches Multiple Critical Vulnerabilities in iOS 26.1 and iPadOS 26.1

Trust: 3.75

Fetched: Nov. 4, 2025, 9:29 a.m., Published: Nov. 4, 2025, midnight
 Vulnerabilities: information disclosure
Affected productsExternal IDs
vendor: apple model: software update
vendor: apple model: ipad
vendor: apple model: ipad air
vendor: apple model: iphone

IoT Device Privacy Vulnerabilities: Corporate Networks Under Siege - Remova Blog - Remova.org

Trust: 4.25

Fetched: Nov. 4, 2025, 9:27 a.m., Published: Oct. 13, 2025, midnight
 Vulnerabilities: default credentials
Affected productsExternal IDs
vendor: google model: wifi
vendor: google model: home

Android Security Bulletin-November 2025 | Android Open Source Project

Trust: 4.25

Fetched: Nov. 4, 2025, 9:25 a.m., Published: Nov. 4, 2025, midnight
 Vulnerabilities: information disclosure, denial of service, code execution
Affected productsExternal IDs
vendor: samsung model: samsung
vendor: samsung model: notes
vendor: samsung model: mobile
vendor: huawei model: huawei
vendor: motorola model: android
vendor: motorola model: motorola
vendor: google model: pixel
vendor: google model: android
db: NVD ids: CVE-2025-48593, CVE-2025-48581

Google Wear OS Message App Vulnerability Let Any Installed App To Send SMS Behalf Of User

Trust: 4.0

Fetched: Nov. 2, 2025, 9:29 a.m., Published: Oct. 29, 2025, 8:58 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
vendor: google model: pixel
db: NVD ids: CVE-2025-12080

What are Common Vulnerabilities & Exposures (CVEs)?

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 3.0

Fetched: Nov. 2, 2025, 9:29 a.m., Published: May 2, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228, CVE-2017-0144, CVE-2024-1234

ChatGPT Atlas Browser Vulnerability Could Let Hackers Take Control, Study Reveals

Trust: 3.0

Fetched: Nov. 2, 2025, 9:29 a.m., Published: Oct. 28, 2025, 1:33 p.m.
 Vulnerabilities: cross-site request forgery, request forgery
Affected productsExternal IDs

Rockwell Automation Lifecycle Services with Cisco | CISA

Trust: 5.25

Fetched: Nov. 2, 2025, 9:28 a.m., Published: Nov. 1, 2025, midnight
 Vulnerabilities: code execution, buffer overflow
Affected productsExternal IDs
vendor: cisco model: ios xe
vendor: cisco model: cisco ios xe
vendor: cisco model: ios xe software
vendor: cisco model: ios software
vendor: cisco model: cisco ios
db: NVD ids: CVE-2025-20352

Decoding the World of Penetration Testing: A Vital Security Measure - TechResources.net

Trust: 3.75

Fetched: Nov. 2, 2025, 9:27 a.m., Published: Oct. 7, 2025, 6:34 a.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: wireshark model: wireshark

Microsoft October 2025 Patch Tuesday - 4 Zero-days and 172 Vulnerabilities Patched

Trust: 3.5

Fetched: Nov. 2, 2025, 9:24 a.m., Published: Oct. 14, 2025, 5:33 p.m.
 Vulnerabilities: memory corruption, buffer overflow, privilege escalation...
Affected productsExternal IDs
db: NVD ids: CVE-2025-2884, CVE-2025-59260, CVE-2025-58718, CVE-2025-59198, CVE-2025-59238, CVE-2016-9535, CVE-2025-55696, CVE-2025-59190, CVE-2025-59223, CVE-2025-58734, CVE-2025-59214, CVE-2025-59292, CVE-2025-59278, CVE-2025-59205, CVE-2025-59224, CVE-2025-59222, CVE-2025-49708, CVE-2025-59253, CVE-2025-59502, CVE-2025-59289, CVE-2025-59234, CVE-2025-58731, CVE-2025-59232, CVE-2025-58726, CVE-2025-59209, CVE-2025-59187, CVE-2025-59193, CVE-2025-59194, CVE-2025-59226, CVE-2025-55680, CVE-2025-59213, CVE-2025-58727, CVE-2025-59203, CVE-2025-55690, CVE-2025-55695, CVE-2025-59230, CVE-2025-59261, CVE-2025-59192, CVE-2025-59248, CVE-2025-58737, CVE-2025-58725, CVE-2025-59244, CVE-2025-59221, CVE-2025-59287, CVE-2025-58739, CVE-2025-59191, CVE-2025-58736, CVE-2025-59497, CVE-2025-58729, CVE-2025-59208, CVE-2025-58733, CVE-2025-55683, CVE-2025-59225, CVE-2025-55692, CVE-2025-47827, CVE-2025-59285, CVE-2025-58730, CVE-2025-59291, CVE-2025-55688, CVE-2025-55699, CVE-2025-59197, CVE-2025-59184, CVE-2025-59189, CVE-2025-59241, CVE-2025-58738, CVE-2025-59236, CVE-2025-59210, CVE-2025-59227, CVE-2025-55694, CVE-2025-55693, CVE-2025-58724, CVE-2025-58720, CVE-2025-55697, CVE-2025-55684, CVE-2025-59288, CVE-2025-58714, CVE-2025-55682, CVE-2025-59275, CVE-2025-59229, CVE-2025-55698, CVE-2025-55691, CVE-2025-59188, CVE-2025-59239

Microsoft's October 2025 Patch Tuesday Updates Fix 175 Flaws

Trust: 3.0

Fetched: Nov. 2, 2025, 9:22 a.m., Published: Oct. 15, 2025, 7:51 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-587377, CVE-2025-592777, CVE-2025-556765, CVE-2025-592596, CVE-2025-556826, CVE-2025-592087, CVE-2025-249907, CVE-2025-556887, CVE-2025-592757, CVE-2025-591975, CVE-2025-553376, CVE-2025-553386, CVE-2025-592843, CVE-2025-556897, CVE-2025-556917, CVE-2025-556955, CVE-2025-592827, CVE-2025-553206, CVE-2025-592718, CVE-2025-531507, CVE-2025-592095, CVE-2025-553267, CVE-2025-592942, CVE-2025-488136, CVE-2025-591917, CVE-2025-592027, CVE-2025-592478, CVE-2025-552484, CVE-2025-591897, CVE-2025-592138, CVE-2025-553306, CVE-2025-553407, CVE-2025-592446, CVE-2025-591845, CVE-2025-592586, CVE-2025-587168, CVE-2025-556977, CVE-2025-556877, CVE-2025-591967, CVE-2025-594977, CVE-2025-531397, CVE-2025-592217, CVE-2025-501747, CVE-2025-592897, CVE-2025-592787, CVE-2025-587287, CVE-2025-592227, CVE-2025-592045, CVE-2025-557017, CVE-2025-592498, CVE-2025-553317, CVE-2025-587194, CVE-2025-479795, CVE-2025-592067, CVE-2025-592535, CVE-2025-592907, CVE-2025-501527, CVE-2025-556995, CVE-2025-587257, CVE-2025-592378, CVE-2025-553255, CVE-2025-592617, CVE-2025-591927, CVE-2025-592107, CVE-2025-592437, CVE-2025-587207, CVE-2025-587227, CVE-2025-537177, CVE-2025-556795, CVE-2025-592387, CVE-2025-592547, CVE-2025-592817, CVE-2025-553159, CVE-2025-587337, CVE-2025-556907, CVE-2025-592295, CVE-2025-479897, CVE-2025-592803, CVE-2025-587357, CVE-2025-556817, CVE-2025-537828, CVE-2025-592035, CVE-2025-556947, CVE-2025-594947, CVE-2025-556937, CVE-2025-587367, CVE-2025-592357, CVE-2025-587347, CVE-2025-553365, CVE-2025-587158, CVE-2025-553346, CVE-2025-537687, CVE-2025-587327, CVE-2025-592007, CVE-2025-592146, CVE-2025-480047, CVE-2025-592857, CVE-2025-556867, CVE-2025-591885, CVE-2025-592337, CVE-2025-592879, CVE-2025-591856, CVE-2025-592958, CVE-2025-592317, CVE-2025-592885, CVE-2025-552407, CVE-2025-557006, CVE-2025-592189, CVE-2025-592307, CVE-2025-556847, CVE-2025-592557, CVE-2025-587147, CVE-2025-556787, CVE-2025-587396, CVE-2025-592368, CVE-2025-592288, CVE-2025-501757, CVE-2025-587247, CVE-2025-595027, CVE-2025-591937, CVE-2025-592237, CVE-2025-591905, CVE-2025-592247, CVE-2025-556927, CVE-2025-592427, CVE-2025-592057, CVE-2025-556857, CVE-2025-592257, CVE-2025-592508, CVE-2025-592469, CVE-2025-587188, CVE-2025-592576, CVE-2025-587317, CVE-2025-592417, CVE-2025-591877, CVE-2025-587296, CVE-2025-592115, CVE-2025-592526, CVE-2025-592277, CVE-2025-592928, CVE-2025-592077, CVE-2025-592017, CVE-2025-552477, CVE-2025-250047, CVE-2025-592487, CVE-2025-553326, CVE-2025-591985, CVE-2025-556967, CVE-2025-591865, CVE-2025-592866, CVE-2025-556835, CVE-2025-587267, CVE-2025-553397, CVE-2025-553218, CVE-2025-556987, CVE-2025-592726, CVE-2025-553287, CVE-2025-556777, CVE-2025-587176, CVE-2025-591947, CVE-2025-240527, CVE-2025-592918, CVE-2025-553336, CVE-2025-592267, CVE-2025-591997, CVE-2025-592327, CVE-2025-497089, CVE-2025-592605, CVE-2025-587277, CVE-2025-587387, CVE-2025-587307, CVE-2025-556807, CVE-2025-553357, CVE-2025-591957, CVE-2025-592347