Sign-up

VARIoT news about IoT security

Download photos or videos to your device - Computer - Google Photos Help

Trust: 3.0

Fetched: Aug. 15, 2025, 9:10 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: chrome

Download and install Google Chrome - Computer - Google Chrome Help

Trust: 3.0

Fetched: Aug. 15, 2025, 9:09 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: chrome
vendor: google model: google chrome

CVE-2025-52970 - SecAlerts

Trust: 3.0

Fetched: Aug. 13, 2025, 6:34 p.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-52970

CVE-2025-8452 - Unauthenticated leak of sensitive information affecting multiple models from Brother Industries, Ltd., FUJIFILM Business Innovation, Ricoh, Toshiba Tec, and Konica Minolta, Inc. - SecAlerts

Trust: 3.25

Fetched: Aug. 13, 2025, 6:32 p.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-8452

Analysis of the ToolShell vulnerabilities and exploit code | Securelist

Related entries in the VARIoT vulnerabilities database: VAR-202007-0327

Trust: 4.5

Fetched: Aug. 13, 2025, 6:31 p.m., Published: Jan. 13, 2050, midnight
 Vulnerabilities: code execution, authentication bypass, data deserialization vulnerability...
Affected productsExternal IDs
db: NVD ids: CVE-2020-1147, CVE-2025-53771, CVE-2025-49706, CVE-2025-49704, CVE-2025-53770

CVE-2025-20281 | TenableĀ®

Trust: 3.5

Fetched: Aug. 13, 2025, 6:31 p.m., Published: July 28, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-20281

CVE-2025-53721 : Elevation of Privilege Vulnerability in Windows Connected Devices Platform Service

Trust: 4.25

Fetched: Aug. 13, 2025, 6:31 p.m., Published: Aug. 12, 2025, 5:10 p.m.
 Vulnerabilities: use after free
Affected productsExternal IDs
db: NVD ids: CVE-2025-53721

CVE-2025-53744 - Incorrect Privilege Assignment in Security Fabric - SecAlerts

Trust: 3.25

Fetched: Aug. 13, 2025, 6:30 p.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-53744

CVE-2025-54622: Authentication Bypass Vulnerability in Devicemanager Module - Cybersecurity Exploit Tracker by Ameeba

Trust: 5.25

Fetched: Aug. 13, 2025, 6:30 p.m., Published: Nov. 30, 0001, midnight
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
db: NVD ids: CVE-2025-54622

Top 6 Most Widely Used Port Scanners in Cybersecurity - Netlas Blog

Trust: 3.75

Fetched: Aug. 13, 2025, 6:28 p.m., Published: Aug. 6, 2025, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: wireshark model: wireshark

ios 18.6: Why should you install iOS 18.6 update on your device? Here's what Apple says you must do ASAP - The Economic Times

Trust: 4.75

Fetched: Aug. 13, 2025, 6:28 p.m., Published: Aug. 18, 2025, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: software update
vendor: apple model: safari
vendor: apple model: webkit
vendor: essential model: phone
db: NVD ids: CVE-2025-6558

CVE-2025-3892 - SecAlerts

Trust: 5.75

Fetched: Aug. 13, 2025, 6:28 p.m., Published: -
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: axis model: axis
db: NVD ids: CVE-2025-3892

CVE-2025-55280 | TenableĀ®

Trust: 3.25

Fetched: Aug. 13, 2025, 6:27 p.m., Published: Aug. 13, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-55280

SonicWall Alert: Critical SSL VPN Flaw (CVE-2025-40600) Allows Remote DoS Attack on Firewalls

Trust: 5.5

Fetched: Aug. 13, 2025, 6:26 p.m., Published: July 30, 2025, 12:07 a.m.
 Vulnerabilities: format string vulnerability, service disruption, denial of service
Affected productsExternal IDs
vendor: sonicwall model: sonicos
vendor: sonicwall model: ssl vpn
db: NVD ids: CVE-2025-40600

Urgent Alert: Critical Command Injection Vulnerability Affects Ubiquiti UniFi Devices - What You Need to Know - Blue Chip Technologies Ltd.

Trust: 5.25

Fetched: Aug. 13, 2025, 6:25 p.m., Published: July 21, 2025, 10:54 a.m.
 Vulnerabilities: code injection, privilege escalation, command injection
Affected productsExternal IDs
vendor: snort model: snort
vendor: ubiquiti model: unifi
db: NVD ids: CVE-2025-27212, CVE-2024-27981

CVE-2025-30127: Critical Security Vulnerability in Marbella KR8s Dashcam FF 2.0.8 - Cybersecurity Exploit Tracker by Ameeba

Trust: 3.25

Fetched: Aug. 13, 2025, 6:25 p.m., Published: Nov. 30, 0001, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-30127

The Root(ing) Of All Evil: Security Holes That Could Compromise Your Mobile Device

Trust: 3.75

Fetched: Aug. 13, 2025, 6:23 p.m., Published: Aug. 13, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2024-48336

Safeguarding Patient Data: Four Steps to Consider When Assessing Your IT Infrastructure - MedTechNews

Trust: 3.75

Fetched: Aug. 13, 2025, 6:22 p.m., Published: Aug. 13, 2025, 6:42 a.m.
 Vulnerabilities: default password
Affected productsExternal IDs
vendor: essential model: phone

CVE-2025-55279 : Hard-coded Key Vulnerability in ZKTeco WL20 Device

Trust: 3.0

Fetched: Aug. 13, 2025, 6:22 p.m., Published: Aug. 13, 2025, 11:23 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-55279

CVE-2025-55280 - ZKTeco WL20 PlainText Data Exposure Vulnerability

Trust: 3.0

Fetched: Aug. 13, 2025, 6:22 p.m., Published: Aug. 13, 2025, 12:15 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-55280