Sign-up

VARIoT news about IoT security

CISA Warns of Citrix RCE and Privilege Escalation Vulnerabilities Exploited in Attacks

Trust: 3.75

Fetched: Aug. 29, 2025, 9:41 a.m., Published: Aug. 26, 2025, 7:02 a.m.
 Vulnerabilities: privilege escalation, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2024-8068, CVE-2024-8069, CVE-2025-48384

What's New In iOS 18.6.2 - SimplyMac

Trust: 4.5

Fetched: Aug. 29, 2025, 9:40 a.m., Published: Aug. 20, 2025, 6:16 p.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: apple model: macos
vendor: apple model: ipad air
vendor: apple model: ipad
vendor: apple model: software update
vendor: apple model: iphone
db: NVD ids: CVE-2025-43300

All Apple users should update after company patches zero-day vulnerability in all platforms | Malwarebytes

Trust: 4.75

Fetched: Aug. 29, 2025, 9:27 a.m., Published: Aug. 21, 2025, 12:04 p.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: apple model: macos
vendor: apple model: ipad
vendor: apple model: software update
vendor: apple model: iphone
db: NVD ids: CVE-2025-43300

OAuth Device Flow Attacks: 2024-2025 Security Analysis

Trust: 3.75

Fetched: Aug. 29, 2025, 9:26 a.m., Published: Aug. 26, 2025, 2:50 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: essential model: phone

CISA Alerts On Ongoing Exploits Targeting D-Link Device Vulnerabilities - Cybernoz - Cybersecurity News

Related entries in the VARIoT vulnerabilities database: VAR-202009-0783, VAR-202009-0782, VAR-202211-1888

Trust: 4.5

Fetched: Aug. 27, 2025, 10:15 a.m., Published: Aug. 6, 2025, 7:57 a.m.
 Vulnerabilities: command injection, code execution
Affected productsExternal IDs
vendor: trend model: security
vendor: d-link model: dcs-2670l
vendor: d-link model: dcs-2530l
vendor: d-link model: dnr-322l
db: NVD ids: CVE-2020-25079, CVE-2020-25078, CVE-2022-40799

CVE-2025-53766: GDI+ Heap Overflow and RCE Risk in Windows | Windows Forum

Trust: 4.5

Fetched: Aug. 27, 2025, 10:02 a.m., Published: Aug. 12, 2025, 6:17 p.m.
 Vulnerabilities: code execution, buffer overflow, integer overflow
Affected productsExternal IDs
db: NVD ids: CVE-2025-53766

For your weekend to-do list: Update your Apple devices to fix a critical browser flaw | Macworld

Trust: 3.75

Fetched: Aug. 26, 2025, 10:53 a.m., Published: Aug. 1, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: software update
vendor: apple model: safari
vendor: apple model: webkit
vendor: apple model: macos
vendor: google model: chrome
db: NVD ids: CVE-2025-6558

Security Bulletin: NVIDIA Container Toolkit - July 2025 | NVIDIA

Trust: 4.5

Fetched: Aug. 26, 2025, 10:52 a.m., Published: July 26, 2025, midnight
 Vulnerabilities: information disclosure, denial of service
Affected productsExternal IDs
vendor: trend model: security
vendor: huawei model: huawei
db: NVD ids: CVE-2025-23267, CVE-2025-23266

Which Exposure Management Service Is Best for Securing the Attack Surface in 2025?

Trust: 3.75

Fetched: Aug. 26, 2025, 10:52 a.m., Published: Aug. 17, 2025, 4:13 p.m.
 Vulnerabilities: code execution, memory corruption
Affected productsExternal IDs

Siemens SIPROTEC 5 | CISA

Related entries in the VARIoT vulnerabilities database: VAR-202508-0348

Trust: 3.5

Fetched: Aug. 26, 2025, 10:51 a.m., Published: Aug. 5, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: siemens model: cp300
vendor: siemens model: siprotec 5
vendor: siemens model: siprotec
db: NVD ids: CVE-2025-40570

Cisco IOS and IOS XE Software Smart Install Remote Code Execution Vulnerability - Cisco

Trust: 3.75

Fetched: Aug. 26, 2025, 10:51 a.m., Published: Aug. 21, 2025, 6:59 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: cisco model: cisco nx-os
vendor: cisco model: catalyst
vendor: cisco model: nx-os software
vendor: cisco model: router
vendor: cisco model: technical support
vendor: cisco model: cisco ios xr
vendor: cisco model: ios xe
vendor: cisco model: cisco ios
vendor: cisco model: ios xr software
vendor: cisco model: cisco ios xe
vendor: cisco model: catalyst switches
vendor: cisco model: ios xr
vendor: cisco model: ios software
vendor: cisco model: nx-os
vendor: cisco model: ios xe software
vendor: cisco systems model: cisco nx-os
vendor: cisco systems model: catalyst
vendor: cisco systems model: nx-os software
vendor: cisco systems model: router
vendor: cisco systems model: technical support
vendor: cisco systems model: cisco ios xr
vendor: cisco systems model: ios xe
vendor: cisco systems model: cisco ios
vendor: cisco systems model: ios xr software
vendor: cisco systems model: cisco ios xe
vendor: cisco systems model: catalyst switches
vendor: cisco systems model: ios xr
vendor: cisco systems model: ios software
vendor: cisco systems model: nx-os
vendor: cisco systems model: ios xe software

Introduction of a Router - GeeksforGeeks

Trust: 3.75

Fetched: Aug. 26, 2025, 10:50 a.m., Published: Nov. 12, 2018, 5:26 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: home

How To Fix macOS Ventura 13.7.8 Problems - SimplyMac

Trust: 4.5

Fetched: Aug. 26, 2025, 10:48 a.m., Published: Sept. 22, 2023, 8:16 a.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: apple model: safari
vendor: apple model: macbook
vendor: apple model: imac
vendor: apple model: software update
vendor: apple model: macbook air
vendor: apple model: installer
vendor: apple model: macbook pro
vendor: apple model: iphone
vendor: apple model: macos
vendor: apple model: ipad
db: NVD ids: CVE-2025-43300

Your iPhone is under threat as Apple rushes emergency update; here’s what you need to do to stay safe - The Economic Times

Trust: 4.0

Fetched: Aug. 26, 2025, 10:48 a.m., Published: Aug. 18, 2025, midnight
 Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: apple model: safari
vendor: apple model: ipad air
vendor: apple model: iphone
vendor: apple model: macos
vendor: apple model: ipad
vendor: apple model: webkit

Apple iOS 18.6.2 Update: Critical Security Patch for iPhones

Trust: 3.25

Fetched: Aug. 26, 2025, 10:47 a.m., Published: June 18, 2002, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone

Apple Issues Urgent Patch for Zero-Day Vulnerability CVE-2025-43300 Exploited in the Wild

Trust: 6.0

Fetched: Aug. 26, 2025, 10:47 a.m., Published: Aug. 20, 2025, 10:41 p.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
vendor: apple model: macos
db: NVD ids: CVE-2025-43300

iPhone Security Warning From Indian Govt After Apple’s Big Update | Tech News - News18

Trust: 3.25

Fetched: Aug. 26, 2025, 10:46 a.m., Published: Aug. 25, 2025, 2:04 a.m.
 Vulnerabilities: improper bounds checking, memory corruption
Affected productsExternal IDs
vendor: apple model: software update
vendor: apple model: ipad
vendor: apple model: iphone
vendor: apple model: macos

Gen 7 and newer SonicWall Firewalls - SSLVPN Recent Threat Activity

Trust: 5.75

Fetched: Aug. 26, 2025, 10:45 a.m., Published: -
 Vulnerabilities: account lockout
Affected productsExternal IDs
vendor: sonicwall model: sonicos
db: NVD ids: CVE-2024-40766

Update Canonical Ubuntu Desktop: USN-7681-1: Linux kernel vulnerability

Trust: 3.0

Fetched: Aug. 26, 2025, 10:44 a.m., Published: Jan. 26, 7681, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: canonical model: ubuntu

Update Apple devices now - new security patch fixes potentially serious zero-day flaw | TechRadar

Related entries in the VARIoT vulnerabilities database: VAR-202501-3666

Trust: 5.75

Fetched: Aug. 26, 2025, 10:44 a.m., Published: Aug. 21, 2025, 3:04 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: ipad
vendor: apple model: ipad air
vendor: apple model: iphone
vendor: apple model: macos
db: NVD ids: CVE-2025-31200, CVE-2025-24201, CVE-2025-31201, CVE-2025-24200, CVE-2025-43300, CVE-2025-24085