Sign-up

VARIoT news about IoT security

Latest news

The news are found with our scripts for filtering search results.
Additional information about vulnerabilities, affected products and external identifiers are obtained with NLP and custom filters from found news.

Attackers exploiting critical Fortinet zero-day vulnerability | TechTarget

Trust: 4.5

Fetched: Jan. 19, 2025, 9:37 a.m., Published: Jan. 14, 2025, midnight
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
vendor: sonicwall model: ssl vpn
vendor: sonicwall model: sonicos
vendor: fortigate model: fortios
db: NVD ids: CVE-2024-55591, CVE-2024-40766

CVE-2020-1819 | Tenable®

Related entries in the VARIoT vulnerabilities database: VAR-202006-1876, VAR-202006-1873, VAR-202006-1879, VAR-202006-1877, VAR-202006-1881, VAR-202006-1874, VAR-202006-1878

Trust: 4.25

Fetched: Jan. 19, 2025, 9:37 a.m., Published: May 19, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: huawei model: huawei
db: NVD ids: CVE-2020-1823, CVE-2020-1822, CVE-2020-1824, CVE-2020-1818, CVE-2020-1821, CVE-2020-1820, CVE-2020-1819

Critical Flaw in GE Healthcare Imaging Devices Risks Patient Data - Spiceworks

Trust: 5.0

Fetched: Jan. 19, 2025, 9:36 a.m., Published: Jan. 7, 2025, 9:01 a.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: ge healthcare model: xeleris
db: NVD ids: CVE-2020-25179

CVE-2018-9447 : Local Denial of Service Vulnerability in Android Emergency Callback Mode by Google | SecurityVulnerability.io

Trust: 5.25

Fetched: Jan. 19, 2025, 9:36 a.m., Published: Jan. 17, 2025, 11:15 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2018-9447

New macOS Vulnerability Lets Attackers Bypass Apple’s System Integrity Protection (SIP)

Trust: 4.75

Fetched: Jan. 19, 2025, 9:34 a.m., Published: Jan. 13, 2025, 6:38 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: apple model: macos
db: NVD ids: CVE-2024-44243

CVE-2018-9384 : KASLR Bypass Vulnerability in Android Devices by Google | SecurityVulnerability.io

Trust: 4.25

Fetched: Jan. 19, 2025, 9:34 a.m., Published: Jan. 17, 2025, 11:15 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2018-9384

Update Canonical Ubuntu Server: USN-7205-1: Django vulnerability

Trust: 4.25

Fetched: Jan. 19, 2025, 9:32 a.m., Published: Jan. 19, 7205, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: canonical model: ubuntu

CVE-2023-50739 : Buffer Overflow Vulnerability in Lexmark Devices Using Internet Printing Protocol | SecurityVulnerability.io

Trust: 5.25

Fetched: Jan. 19, 2025, 9:32 a.m., Published: Jan. 18, 2025, 12:15 a.m.
 Vulnerabilities: buffer overflow
Affected productsExternal IDs
vendor: lexmark model: lexmark
db: NVD ids: CVE-2023-50739

15K Fortinet Device Configs Leaked to the Dark Web

Related entries in the VARIoT vulnerabilities database: VAR-201906-0815, VAR-202210-0198

Trust: 5.5

Fetched: Jan. 19, 2025, 9:32 a.m., Published: Jan. 2, 2025, midnight
 Vulnerabilities: authentication bypass, path traversal
Affected productsExternal IDs
vendor: trend model: security
vendor: trend micro model: security
db: NVD ids: CVE-2024-55591, CVE-2018-13379, CVE-2022-40684

Update Canonical Ubuntu Server: USN-7204-1: NeoMutt vulnerabilities

Trust: 6.0

Fetched: Jan. 19, 2025, 9:31 a.m., Published: Jan. 19, 7204, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: canonical model: ubuntu
db: NVD ids: CVE-2018-14357, CVE-2018-14351, CVE-2018-14355, CVE-2018-14361, CVE-2021-32055, CVE-2018-14359, CVE-2018-14363, CVE-2018-14352, CVE-2018-14354, CVE-2018-14349, CVE-2022-1328, CVE-2024-49393, CVE-2018-14356, CVE-2024-49394, CVE-2018-14362, CVE-2018-14353, CVE-2020-28896, CVE-2018-14350, CVE-2020-14954, CVE-2018-14358, CVE-2018-14360

Major new online tunneling vulnerability could put millions of devices at risk | TechRadar

Trust: 3.25

Fetched: Jan. 19, 2025, 9:31 a.m., Published: Jan. 17, 2025, 1:57 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2024-7595, CVE-2024-7596, CVE-2025-23018, CVE-2025-23019

10 Best Network Security Auditing Tools for 2025 - with Free Trials!

Trust: 3.25

Fetched: Jan. 19, 2025, 9:29 a.m., Published: March 30, 2021, 9:52 p.m.
 Vulnerabilities: cross-site scripting, sql injection
Affected productsExternal IDs
vendor: manageengine model: network configuration manager
vendor: nagios model: nagios xi

CVE-2024-49736: Settings App Vulnerability Leading to Unauthorized Factory Reset

Trust: 3.0

Fetched: Jan. 19, 2025, 9:28 a.m., Published: Jan. 1, 2025, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2024-49736

CVE-2024-43077 - Apache Device Manager Out-of-Bounds Write Vulnerability

Trust: 5.0

Fetched: Jan. 19, 2025, 9:27 a.m., Published: Jan. 3, 2025, 1:15 a.m.
 Vulnerabilities: memory corruption
Affected productsExternal IDs
db: NVD ids: CVE-2024-43077

Old Vulnerability (CVE-2022-40684) Leads to Massive FortiGate Data Breach, Exposing 15,000+ Devices - OP INNOVATE

Related entries in the VARIoT vulnerabilities database: VAR-202210-0198

Trust: 4.0

Fetched: Jan. 19, 2025, 9:27 a.m., Published: Jan. 17, 2025, 9:40 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2022-40684

Update Canonical Ubuntu Desktop: USN-7213-1: poppler vulnerability

Trust: 3.0

Fetched: Jan. 19, 2025, 9:26 a.m., Published: Jan. 19, 7213, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: canonical model: ubuntu

Hackers Released 15,000+ Unique Fortigate Firewall Configs

Related entries in the VARIoT vulnerabilities database: VAR-202210-0198

Trust: 5.75

Fetched: Jan. 19, 2025, 9:26 a.m., Published: Jan. 16, 2025, 3:53 a.m.
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2022-40684

Update Canonical Ubuntu Desktop: USN-7205-1: Django vulnerability

Trust: 4.25

Fetched: Jan. 19, 2025, 9:25 a.m., Published: Jan. 19, 7205, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: canonical model: ubuntu

Update Canonical Ubuntu Desktop: USN-7216-1: tqdm vulnerability

Trust: 6.25

Fetched: Jan. 19, 2025, 9:25 a.m., Published: Jan. 19, 7216, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: canonical model: ubuntu
db: NVD ids: CVE-2024-34062

Update Canonical Ubuntu Server: USN-7216-1: tqdm vulnerability

Trust: 6.25

Fetched: Jan. 19, 2025, 9:25 a.m., Published: Jan. 19, 7216, midnight
 Vulnerabilities: code execution
Affected productsExternal IDs
vendor: canonical model: ubuntu
db: NVD ids: CVE-2024-34062