VARIoT news about IoT security

Trust: 5.5

Fetched: Oct. 28, 2025, 9:17 a.m., Published: Oct. 28, 2025, 5:57 a.m.
Vulnerabilities: memory corruption, code execution
Affected productsExternal IDs
vendor: apple model: macos
db: NVD ids: CVE-2025-30401, CVE-2025-55177
Related entries in the VARIoT vulnerabilities database: VAR-202501-3666

Trust: 5.5

Fetched: Oct. 28, 2025, 9:17 a.m., Published: Oct. 27, 2025, midnight
Vulnerabilities: memory corruption, code execution, privilege escalation
Affected productsExternal IDs
vendor: apple model: software update
vendor: apple model: ipad
vendor: apple model: macos
vendor: apple model: iphone
db: NVD ids: CVE-2025-24200, CVE-2025-43357, CVE-2025-24085, CVE-2025-24201, CVE-2025-43300, CVE-2025-43298, CVE-2025-43304, CVE-2025-43400, CVE-2025-48384

Trust: 3.25

Fetched: Oct. 26, 2025, 9:52 a.m., Published: -
Vulnerabilities: configuration error
Affected productsExternal IDs

Trust: 5.0

Fetched: Oct. 26, 2025, 9:51 a.m., Published: Oct. 25, 2025, 1 a.m.
Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: check point model: check point

Trust: 3.0

Fetched: Oct. 26, 2025, 9:50 a.m., Published: Jan. 26, 7831, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: canonical model: ubuntu

Trust: 4.25

Fetched: Oct. 26, 2025, 9:49 a.m., Published: Jan. 26, 7828, midnight
Vulnerabilities: -
Affected productsExternal IDs
vendor: canonical model: ubuntu
db: NVD ids: CVE-2025-61912, CVE-2025-61911

Trust: 3.0

Fetched: Oct. 26, 2025, 9:48 a.m., Published: Oct. 6, 2025, midnight
Vulnerabilities: information disclosure, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-59489

Trust: 3.75

Fetched: Oct. 26, 2025, 9:46 a.m., Published: Oct. 25, 2025, midnight
Vulnerabilities: integer overflow, buffer overflow
Affected productsExternal IDs
db: NVD ids: CVE-2025-20709, CVE-2025-20723, CVE-2025-20722, CVE-2025-20720, CVE-2025-20710, CVE-2025-20713, CVE-2025-20715, CVE-2025-20721, CVE-2025-20714, CVE-2025-20717, CVE-2025-20711, CVE-2025-20724, CVE-2025-20718, CVE-2025-20719, CVE-2025-20712, CVE-2025-20716

Trust: 3.5

Fetched: Oct. 26, 2025, 9:45 a.m., Published: Oct. 26, 2025, midnight
Vulnerabilities: denial of service, information disclosure, code execution
Affected productsExternal IDs
vendor: google model: pixel
vendor: google model: android

Trust: 6.0

Fetched: Oct. 26, 2025, 9:45 a.m., Published: Oct. 22, 2025, midnight
Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: tp-link model: routers
vendor: tp-link model: gateway
db: NVD ids: CVE-2025-7850, CVE-2025-6542, CVE-2025-6541, CVE-2025-7851

Trust: 4.5

Fetched: Oct. 26, 2025, 9:44 a.m., Published: Oct. 17, 2025, 1:42 p.m.
Vulnerabilities: buffer overflow, code execution
Affected productsExternal IDs
vendor: watchguard model: firebox
vendor: watchguard model: fireware
db: NVD ids: CVE-2025-9242

Trust: 4.75

Fetched: Oct. 26, 2025, 9:42 a.m., Published: Oct. 21, 2025, 2:42 a.m.
Vulnerabilities: improper access control, access control flaw, privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2025-33073
Related entries in the VARIoT vulnerabilities database: VAR-202109-1875

Trust: 6.0

Fetched: Oct. 26, 2025, 9:42 a.m., Published: Sept. 15, 2021, 10:15 p.m.
Vulnerabilities: authentication bypass
Affected productsExternal IDs
vendor: dahua model: camera
vendor: dahua model: ip camera
db: NVD ids: CVE-2021-33044

Trust: 3.0

Fetched: Oct. 26, 2025, 9:41 a.m., Published: Oct. 24, 2025, midnight
Vulnerabilities: code execution
Affected productsExternal IDs

Trust: 6.25

Fetched: Oct. 26, 2025, 9:41 a.m., Published: Oct. 11, 2025, 9:18 a.m.
Vulnerabilities: buffer overflow
Affected productsExternal IDs
vendor: huawei model: huawei
db: NVD ids: CVE-2025-58301

Trust: 5.25

Fetched: Oct. 26, 2025, 9:41 a.m., Published: Oct. 24, 2025, 11:04 a.m.
Vulnerabilities: authentication bypass, injection attack, buffer overflow...
Affected productsExternal IDs
vendor: samsung model: galaxy
vendor: samsung model: samsung galaxy
vendor: samsung model: printers
vendor: samsung model: samsung
vendor: samsung model: printer
vendor: samsung model: mobile
vendor: samsung model: mobile devices
vendor: google model: home
vendor: lexmark model: lexmark
vendor: lexmark model: printer
vendor: philips model: hue bridge
vendor: philips hue model: hue bridge

Trust: 4.25

Fetched: Oct. 26, 2025, 9:40 a.m., Published: Feb. 26, 2048, midnight
Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-59287

Trust: 4.25

Fetched: Oct. 26, 2025, 9:40 a.m., Published: Oct. 24, 2025, 10:38 a.m.
Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-59287

Trust: 4.75

Fetched: Oct. 26, 2025, 9:39 a.m., Published: Oct. 21, 2025, midnight
Vulnerabilities: denial of service, information disclosure, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2022-38102, CVE-2025-23281, CVE-2022-36392, CVE-2025-23288, CVE-2025-23286, CVE-2025-23276

Trust: 5.5

Fetched: Oct. 26, 2025, 9:38 a.m., Published: Jan. 10, 2023, midnight
Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: siemens model: ruggedcom
vendor: siemens model: rsl910
vendor: siemens model: ruggedcom ros
db: NVD ids: CVE-2025-41224, CVE-2025-41223, CVE-2023-52236, CVE-2025-41222