Sign-up

VARIoT news about IoT security

CVE-2025-20243 - Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Remote Access SSL VPN Denial of Service Vulnerability - SecAlerts

Trust: 6.0

Fetched: Aug. 15, 2025, 9:29 a.m., Published: -
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: adaptive security appliance
db: NVD ids: CVE-2025-20243

Pixel Update Bulletin-August 2025 | Android Open Source Project

Trust: 4.5

Fetched: Aug. 15, 2025, 9:28 a.m., Published: Aug. 15, 2025, midnight
 Vulnerabilities: information disclosure, denial of service, code execution
Affected productsExternal IDs
vendor: google model: pixel
vendor: google model: android
db: NVD ids: CVE-2025-26784

CVE-2025-20251 - Cisco Secure Firewall Adaptive Security Appliance and Cisco Secure Firewall Threat Defense Software Authenticated Arbitrary File Deletion - SecAlerts

Trust: 4.75

Fetched: Aug. 15, 2025, 9:28 a.m., Published: -
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: adaptive security appliance
db: NVD ids: CVE-2025-20251

CVE-2025-37103 - Hard-Coded Credentials Vulnerability in HPE…

Trust: 3.75

Fetched: Aug. 15, 2025, 9:27 a.m., Published: Aug. 9, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: aruba model: aruba instant
vendor: aruba model: instant
db: NVD ids: CVE-2025-37103

SploitLight: Microsoft warns macOS flaw could leak Apple Intelligence metadata - 9to5Mac

Trust: 3.75

Fetched: Aug. 15, 2025, 9:27 a.m., Published: July 28, 2025, 4:44 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: icloud
vendor: apple model: safari
vendor: apple model: macos
db: NVD ids: CVE-2025-31199

Dahua CCTV Vulnerabilities Enable Root Access on Millions of Devices

Trust: 4.75

Fetched: Aug. 15, 2025, 9:26 a.m., Published: Aug. 14, 2025, 9:36 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: dahua model: camera
vendor: hikvision model: hikvision
vendor: dahua technology model: camera
db: NVD ids: CVE-2022-30563

List components - Microsoft Graph v1.0 | Microsoft Learn

Related entries in the VARIoT vulnerabilities database: VAR-202112-0566

Trust: 3.0

Fetched: Aug. 15, 2025, 9:26 a.m., Published: April 4, 2024, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-44228

cisco-sa-fmc-html-inj-MqjrZrny - Cisco Secure Firewall Management Center Software HTML Injection Vulnerability - SecAlerts

Trust: 3.5

Fetched: Aug. 15, 2025, 9:26 a.m., Published: -
 Vulnerabilities: improper validation, request forgery
Affected productsExternal IDs

LG Innotek Camera Vulnerabilities Let Attackers Gain Administrative Access

Trust: 4.0

Fetched: Aug. 15, 2025, 9:25 a.m., Published: July 28, 2025, 8:25 a.m.
 Vulnerabilities: authentication bypass, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-7742

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Remote Access VPN Web Server Denial of Service Vulnerability

Trust: 4.75

Fetched: Aug. 15, 2025, 9:25 a.m., Published: Aug. 14, 2025, 3:53 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: adaptive security appliance
vendor: cisco model: asa software
vendor: cisco model: firepower

Multiple Vulnerabilities in Fortinet Products Could Allow for Remote Code Execution

Trust: 3.0

Fetched: Aug. 15, 2025, 9:24 a.m., Published: July 25, 2025, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software VPN Web Server Denial of Service Vulnerability

Trust: 3.75

Fetched: Aug. 15, 2025, 9:24 a.m., Published: Aug. 14, 2025, 3:53 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: adaptive security appliance
vendor: cisco model: asa software

Brute-force attacks hammer Fortinet devices worldwide - Help Net Security

Trust: 3.75

Fetched: Aug. 15, 2025, 9:23 a.m., Published: Aug. 14, 2025, 1:47 p.m.
 Vulnerabilities: path traversal, code execution
Affected productsExternal IDs
vendor: fortigate model: fortios

FortiOS, FortiProxy, and FortiPAM Auth Bypass Vulnerability Allows Attackers to Gain Full Control

Trust: 6.0

Fetched: Aug. 15, 2025, 9:23 a.m., Published: Aug. 13, 2025, 8:41 a.m.
 Vulnerabilities: command execution, authentication bypass, authentication flaw
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2024-26009

7000+ Citrix NetScaler Devices Still Vulnerable to CVE-2025-5777 and CVE-2025-6543

Trust: 4.5

Fetched: Aug. 15, 2025, 9:23 a.m., Published: Aug. 12, 2025, 2:59 p.m.
 Vulnerabilities: buffer overflow, denial of service, code execution
Affected productsExternal IDs
vendor: citrix model: netscaler
vendor: citrix model: gateway
db: NVD ids: CVE-2025-6543, CVE-2025-5777

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software for Firepower 3100 and 4200 Series TLS 1.3 Cipher Denial of Service Vulnerability - Cisco

Trust: 3.75

Fetched: Aug. 15, 2025, 9:22 a.m., Published: Aug. 14, 2025, 11:05 a.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: adaptive security appliance
vendor: cisco model: asa software
vendor: cisco model: series
vendor: cisco model: firepower

SSA-978177

Trust: 5.5

Fetched: Aug. 15, 2025, 9:22 a.m., Published: Aug. 1, 2025, midnight
 Vulnerabilities: command injection, os command injection, privilege escalation
Affected productsExternal IDs
vendor: nozomi model: guardian
vendor: nozomi model: networks guardian
db: NVD ids: CVE-2024-13089, CVE-2024-13090

CVE-2025-31701 - Dahua Network Device Buffer Overflow Vulnerability

Trust: 4.75

Fetched: Aug. 15, 2025, 9:22 a.m., Published: July 23, 2025, 7:15 a.m.
 Vulnerabilities: service disruption, buffer overflow, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-31701

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Access Control Rules Bypass Vulnerability

Trust: 3.0

Fetched: Aug. 15, 2025, 9:21 a.m., Published: Aug. 14, 2025, 3:53 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: asa software
vendor: cisco model: adaptive security appliance

Cisco Patches Three Critical Vulnerabilities - Get the Details

Trust: 4.75

Fetched: Aug. 15, 2025, 9:21 a.m., Published: July 25, 2025, noon
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: trend model: security
vendor: cisco model: identity services engine
vendor: cisco model: cisco identity services engine
vendor: trend micro model: security
db: NVD ids: CVE-2025-20337, CVE-2025-20281, CVE-2025-20282