Sign-up

VARIoT news about IoT security

SinoTrack GPS Receiver - Cyber & Coffee

Trust: 5.0

Fetched: June 15, 2025, 9:19 a.m., Published: June 10, 2025, 4:23 p.m.
 Vulnerabilities: default password
Affected productsExternal IDs
db: NVD ids: CVE-2025-5485, CVE-2025-5484

SinoTrack GPS Receiver | CISA

Trust: 5.0

Fetched: June 15, 2025, 9:13 a.m., Published: June 1, 2025, midnight
 Vulnerabilities: default password
Affected productsExternal IDs
db: NVD ids: CVE-2025-5485, CVE-2025-5484

Scan files as PDFs with your mobile device - Android - Google Workspace Learning Center

Trust: 3.25

Fetched: June 15, 2025, 9:10 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Download photos or videos to your device - Computer - Google Photos Help

Trust: 3.0

Fetched: June 15, 2025, 9:10 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: chrome

Update Canonical Ubuntu Server: USN-7517-1: Linux kernel (Xilinx ZynqMP) vulnerabilities

Trust: 3.0

Fetched: June 13, 2025, 9:40 a.m., Published: Jan. 13, 7517, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: canonical model: ubuntu

Improving the Adoption of Physical Authentication Devices Through Enhanced Usable Security Features | SpringerLink

Trust: 3.0

Fetched: June 13, 2025, 9:34 a.m., Published: June 13, 2025, midnight
 Vulnerabilities: -

Understanding OWASP Top 10 - Mitigating Web Application Vulnerabilities

Trust: 3.5

Fetched: June 13, 2025, 9:33 a.m., Published: June 11, 2025, 10:12 a.m.
 Vulnerabilities: injection attack, cross-site scripting, request forgery...
Affected productsExternal IDs

Indian govt issues high-severity warning for MediaTek-powered devices: Here’s how to be safe

Trust: 4.0

Fetched: June 13, 2025, 9:32 a.m., Published: June 12, 2025, 1:35 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: oneplus model: oneplus
db: NVD ids: CVE-2025-20673, CVE-2025-20672

What is Domain Name System(DNS)? - GeeksforGeeks

Trust: 3.75

Fetched: June 13, 2025, 9:31 a.m., Published: Sept. 25, 2023, 4:26 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs

The 10 Major Java Vulnerability Types that Threaten Your Software

Trust: 3.5

Fetched: June 13, 2025, 9:30 a.m., Published: June 10, 2025, midnight
 Vulnerabilities: injection attack, cross-site scripting, sql injection...
Affected productsExternal IDs
vendor: cups model: cups

CVE-2025-4338 Lantronix Device Installer Improper Restrictio... - vulnerability database | Vulners.com

Trust: 3.25

Fetched: June 13, 2025, 9:27 a.m., Published: May 22, 2025, 11 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-4338

Update Canonical Ubuntu Desktop: USN-7510-1: Linux kernel vulnerabilities

Trust: 3.25

Fetched: June 13, 2025, 9:27 a.m., Published: Jan. 13, 7510, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: canonical model: ubuntu

Critical SAP Vulnerability Exposes Enterprises | Trend Micro (UK)

Related entries in the VARIoT vulnerabilities database: VAR-202504-3437

Trust: 5.5

Fetched: June 13, 2025, 9:26 a.m., Published: June 12, 2025, midnight
 Vulnerabilities: command execution, file upload vulnerability, improper validation...
Affected productsExternal IDs
vendor: trend micro model: security
vendor: trend micro model: trend micro security
vendor: trend micro model: deep security
vendor: trend model: security
vendor: trend model: trend micro security
vendor: trend model: deep security
db: NVD ids: CVE-2025-31324

CVE-2025-20164: Privilege Elevation Vulnerability in Cisco Industrial Ethernet Switch Device Manager - Cybersecurity Exploit Tracker by Ameeba

Trust: 4.75

Fetched: June 13, 2025, 9:23 a.m., Published: May 17, 2025, 10:22 p.m.
 Vulnerabilities: privilege elevation
Affected productsExternal IDs
vendor: cisco model: industrial ethernet
vendor: cisco model: cisco ios
vendor: cisco model: ios software
vendor: cisco model: device manager
db: NVD ids: CVE-2025-20164

CISA KEV 警告 25/06/02:ScreenConnect/ASUS Router/Craft CMS を登録 - IoT OT Security News

Related entries in the VARIoT vulnerabilities database: VAR-202309-0729, VAR-202105-1346

Trust: 4.0

Fetched: June 13, 2025, 9:23 a.m., Published: June 2, 2025, 10:29 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: asus model: asus
vendor: asus model: router
db: NVD ids: CVE-2023-39780, CVE-2025-35939, CVE-2024-56145, CVE-2021-32030, CVE-2025-3935

U.S. CISA adds Wazuh, and WebDAV flaws to its Known Exploited Vulnerabilities catalog

Trust: 5.75

Fetched: June 13, 2025, 9:22 a.m., Published: June 12, 2025, 9:17 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: asus model: asus
vendor: asus model: routers
vendor: tp-link model: routers
vendor: huawei model: huawei
db: NVD ids: CVE-2025-24016, CVE-2025-33053

Microsoft 365 Copilot's Data Exposed - Hit by Zero-Click Vulnerability " TechWorm

Trust: 4.0

Fetched: June 13, 2025, 9:21 a.m., Published: June 12, 2025, 5:58 p.m.
 Vulnerabilities: injection attack
Affected productsExternal IDs
db: NVD ids: CVE-2025-32711

SSA-633269

Trust: 3.0

Fetched: June 13, 2025, 9:21 a.m., Published: June 3, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2024-41797

Update Microsoft SharePoint Server 2019: KB5002727 : resolves a Microsoft Word remote code execution vulnerability.

Trust: 4.25

Fetched: June 13, 2025, 9:20 a.m., Published: June 13, 2019, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-47168, CVE-2025-47169

Critical Windows Task Scheduler Flaw CVE-2025-33067 Exposes Millions to Privilege Escalation | Windows Forum

Trust: 4.5

Fetched: June 13, 2025, 9:16 a.m., Published: May 13, 2025, midnight
 Vulnerabilities: code execution, privilege escalation
Affected productsExternal IDs
db: NVD ids: CVE-2025-33067, CVE-2018-8440