Sign-up

VARIoT news about IoT security

Cyber Threat Intelligence Report | 8/11/2025 | PacketWatch

Related entries in the VARIoT vulnerabilities database: VAR-202009-0782, VAR-202211-1888, VAR-202009-0783

Trust: 4.25

Fetched: Aug. 13, 2025, 6:21 p.m., Published: Aug. 11, 2025, midnight
 Vulnerabilities: request forgery, cross-site request forgery, access control flaw...
Affected productsExternal IDs
vendor: d-link model: dnr-322l
vendor: d-link model: dcs-2670l
vendor: d-link model: dcs-2530l
vendor: cisco model: identity services engine
vendor: cisco model: cisco identity services engine
vendor: trend micro model: security
vendor: sonicwall model: remote access
vendor: sonicwall model: ssl vpn
vendor: trend model: security
db: NVD ids: CVE-2025-53786, CVE-2025-54948, CVE-2025-8088, CVE-2020-25078, CVE-2025-20281, CVE-2025-20337, CVE-2022-40799, CVE-2020-25079, CVE-2025-54987, CVE-2023-2533, CVE-2024-40766

7,000 Citrix NetScaler Devices Still Vulnerable to CVE-2025-5777 and CVE-2025-6543

Trust: 4.0

Fetched: Aug. 13, 2025, 6:21 p.m., Published: Aug. 12, 2025, 1 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: citrix model: netscaler
db: NVD ids: CVE-2025-6543, CVE-2025-5777

TCP Port 5000: The UPnP Vulnerability You Forgot About

Related entries in the VARIoT vulnerabilities database: VAR-202006-0391

Trust: 3.0

Fetched: Aug. 13, 2025, 6:20 p.m., Published: Aug. 12, 2025, 8:16 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2020-12695

Security Bulletins for HUAWEI Phones/Tablets, August 2025

Trust: 4.25

Fetched: Aug. 13, 2025, 6:20 p.m., Published: July 30, 2025, 3:56 p.m.
 Vulnerabilities: input verification vulnerability, authentication bypass, buffer overflow...
Affected productsExternal IDs
vendor: huawei model: huawei
vendor: huawei model: emui
db: NVD ids: CVE-2025-54643, CVE-2025-54609, CVE-2025-54611, CVE-2025-54610, CVE-2025-54616, CVE-2025-54633, CVE-2025-54636, CVE-2025-54644, CVE-2025-54638, CVE-2025-54651, CVE-2025-54606, CVE-2025-54614, CVE-2025-54623, CVE-2025-54617, CVE-2025-54608, CVE-2025-54624, CVE-2025-54625, CVE-2025-54639, CVE-2025-54622, CVE-2025-54647, CVE-2025-54618, CVE-2025-54630, CVE-2025-54642, CVE-2025-54612, CVE-2025-54613, CVE-2025-54640, CVE-2025-54626, CVE-2025-54650, CVE-2025-54631, CVE-2025-54615, CVE-2025-54621, CVE-2025-54645, CVE-2025-54629, CVE-2025-54620, CVE-2025-54619, CVE-2025-54637, CVE-2025-54649, CVE-2025-54641, CVE-2025-54635, CVE-2025-54628, CVE-2025-54634, CVE-2025-54627, CVE-2025-54632, CVE-2025-54648, CVE-2025-54646, CVE-2025-54607

CVE-2025-54465 | TenableĀ®

Trust: 3.25

Fetched: Aug. 13, 2025, 6:19 p.m., Published: Aug. 13, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-54465

CVE-2025-54465 - ZKTeco WL20 Hard-Coded MQTT Credentials Disclosure

Trust: 3.0

Fetched: Aug. 13, 2025, 6:19 p.m., Published: Aug. 13, 2025, 12:15 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-54465

Windows 11 KB5063878 KB5063875 August 2025 Patch And 1 Zero Day Vulnerability And 107 Flaws HTMD Blog

Trust: 3.5

Fetched: Aug. 13, 2025, 6:18 p.m., Published: Aug. 12, 2025, 5:54 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: home
vendor: google model: google chrome
vendor: google model: chrome
db: NVD ids: CVE-2025-53779

CVE-2025-55280 : Security Flaw in ZKTeco WL20 Device Reveals Sensitive Data

Trust: 3.0

Fetched: Aug. 13, 2025, 6:18 p.m., Published: Aug. 13, 2025, 11:38 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-55280

CVE-2025-54465 : Security Vulnerability in ZKTeco WL20 IoT Device

Trust: 3.0

Fetched: Aug. 13, 2025, 6:18 p.m., Published: Aug. 13, 2025, 11:17 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-54465

Windows 10 KB5063709 August 2025 Patch And 1 Zero Day Vulnerability And 107 Flaws HTMD Blog

Trust: 3.5

Fetched: Aug. 13, 2025, 6:17 p.m., Published: Aug. 12, 2025, 6:05 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: google chrome
vendor: google model: chrome
db: NVD ids: CVE-2025-53779

Comprehensive Analysis of Security Challenges and Mitigation Strategies for IoT Healthcare Devices - MedTechNews

Trust: 3.5

Fetched: Aug. 13, 2025, 6:15 p.m., Published: Aug. 12, 2025, 11:21 p.m.
 Vulnerabilities: default credentials, information disclosure, code execution...
Affected productsExternal IDs
vendor: essential model: phone

Millions of Dell laptops could be persistently backdoored in ReVault attacks - Help Net Security

Trust: 5.5

Fetched: Aug. 13, 2025, 6:13 p.m., Published: Aug. 5, 2025, 6:14 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: cisco model: device manager
vendor: dell model: bios
vendor: dell model: latitude 5550
vendor: dell model: latitude 7350
vendor: dell model: latitude 5450
vendor: dell model: latitude
vendor: dell model: latitude 5420
db: NVD ids: CVE-2025-25215, CVE-2025-24922, CVE-2025-24311, CVE-2025-24919, CVE-2025-25050

Download photos or videos to your device - Computer - Google Photos Help

Trust: 3.0

Fetched: Aug. 13, 2025, 6:13 p.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: chrome

Download and install Google Chrome - Computer - Google Chrome Help

Trust: 3.0

Fetched: Aug. 13, 2025, 6:12 p.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: google chrome
vendor: google model: chrome

Download apps & digital content - Google Play Help

Trust: 3.0

Fetched: Aug. 13, 2025, 6:11 p.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Cisco Identity Services Engine Authenticated Remote Code Execution and Authorization Bypass Vulnerabilities - Cisco

Trust: 4.75

Fetched: Aug. 12, 2025, 10:10 a.m., Published: July 16, 2025, 11:49 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: cisco model: identity services engine
vendor: cisco model: cisco identity services engine
db: NVD ids: CVE-2025-20285, CVE-2025-20283, CVE-2025-20284

Uncovering Vulnerabilities in Retired Network Devices | RedOracle

Trust: 4.75

Fetched: Aug. 12, 2025, 10:09 a.m., Published: Aug. 6, 2025, midnight
 Vulnerabilities: command injection, authentication bypass
Affected productsExternal IDs
vendor: netgear model: router
vendor: netgear model: netgear router

Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities

Trust: 5.0

Fetched: Aug. 12, 2025, 10:09 a.m., Published: Aug. 6, 2025, 3:56 p.m.
 Vulnerabilities: cross-site scripting
Affected productsExternal IDs
vendor: cisco model: identity services engine
vendor: cisco model: cisco identity services engine

BadCam: Linux Webcams Abused For Stealthy BadUSB Attacks

Trust: 3.0

Fetched: Aug. 12, 2025, 10:08 a.m., Published: Aug. 11, 2025, 6:27 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: lenovo model: system

Instantel Micromate (Update A) | CISA

Trust: 3.0

Fetched: Aug. 12, 2025, 10:07 a.m., Published: Aug. 7, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-1907