Sign-up

VARIoT news about IoT security

Windows Notepad RCE Flaw Exploits Markdown Files | eSecurity Planet

Trust: 4.75

Fetched: March 10, 2026, 9:25 a.m., Published: Feb. 11, 2026, 3:32 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2026-20841

CVE-2025-1713: Interrupt Remapping Deadlock Vulnerability in Legacy PCI(-X) Devices - Ameeba Exploit Tracker

Trust: 3.25

Fetched: March 10, 2026, 9:23 a.m., Published: Nov. 30, 0001, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-1713

CVE-2026-3701 : Buffer Overflow Vulnerability in H3C Magic B1 Router

Trust: 3.5

Fetched: March 10, 2026, 9:23 a.m., Published: March 8, 2026, 4:02 a.m.
 Vulnerabilities: buffer overflow
Affected productsExternal IDs
db: NVD ids: CVE-2026-3701

CVE-2026-22285 - Dell Device Management Agent Plaintext Storage of Password Vulnerability

Trust: 3.0

Fetched: March 10, 2026, 9:22 a.m., Published: March 4, 2026, 4:16 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2026-22285

Hikvision Camera Vulnerability Actively Exploited, CISA Warns Agencies to Patch Immediately

Related entries in the VARIoT vulnerabilities database: VAR-201705-3762

Trust: 6.25

Fetched: March 10, 2026, 9:22 a.m., Published: March 9, 2026, 1:51 p.m.
 Vulnerabilities: authentication bypass, default credentials
Affected productsExternal IDs
vendor: hikvision model: ip cameras
vendor: hikvision model: hikvision
db: NVD ids: CVE-2017-7921

CVE-2026-3807 : Stack-Based Buffer Overflow in Tenda FH1202 Device

Trust: 5.5

Fetched: March 10, 2026, 9:21 a.m., Published: March 9, 2026, 6:32 a.m.
 Vulnerabilities: buffer overflow
Affected productsExternal IDs
vendor: tenda model: fh1202
db: NVD ids: CVE-2026-3807

Dell Device Management Agent, Improper Check for Unusual or Exceptional Conditions, CVE-2026-22760 (Low) - DailyCVE

Trust: 3.75

Fetched: March 10, 2026, 9:15 a.m., Published: March 9, 2026, 9:13 p.m.
 Vulnerabilities: agent crash, denial of service, service crash
Affected productsExternal IDs
db: NVD ids: CVE-2026-22760

Hikvision flaw exposes devices to privilege attacks - Arabian Post

Trust: 3.5

Fetched: March 10, 2026, 9:15 a.m., Published: March 9, 2026, 7:20 a.m.
 Vulnerabilities: privilege escalation, default credentials
Affected productsExternal IDs
vendor: hangzhou hikvision digital technology model: hikvision
vendor: hikvision model: hikvision

Cisco Secure Firewall Adaptive Security Appliance Software TCP Flood Denial of Service Vulnerability

Trust: 5.0

Fetched: March 10, 2026, 9:15 a.m., Published: March 4, 2026, 4:08 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: adaptive security appliance
vendor: cisco model: adaptive security appliance software

ClamAV Cascading Style Sheets Image Parsing Error Handling Denial of Service Vulnerability

Trust: 3.75

Fetched: March 10, 2026, 9:14 a.m., Published: March 4, 2026, 4:09 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: clamav
vendor: clamav model: clamav

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software IKEv2 Denial of Service Vulnerabilities

Trust: 4.5

Fetched: March 8, 2026, 9:43 a.m., Published: March 4, 2026, 4:07 p.m.
 Vulnerabilities: memory leak, denial of service
Affected productsExternal IDs
vendor: cisco model: adaptive security appliance
vendor: cisco model: asa software
db: NVD ids: CVE-2026-20015, CVE-2026-20014, CVE-2026-20013

Cisco Secure Firewall Threat Defense Software TLS with Snort 3 Detection Engine Denial of Service Vulnerability

Trust: 4.75

Fetched: March 8, 2026, 9:41 a.m., Published: March 4, 2026, 4:10 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: snort model: snort
vendor: cisco model: asa software

Security Bulletins for HUAWEI Phones/Tablets, March 2026

Trust: 4.5

Fetched: March 8, 2026, 9:41 a.m., Published: March 4, 2026, 2:55 p.m.
 Vulnerabilities: data processing vulnerability, authentication bypass, path traversal...
Affected productsExternal IDs
vendor: huawei model: emui
vendor: huawei model: huawei
db: NVD ids: CVE-2026-28541, CVE-2026-28547, CVE-2026-28545, CVE-2026-28542, CVE-2026-28543, CVE-2026-28548, CVE-2026-28550, CVE-2026-24924, CVE-2025-66319, CVE-2026-28536, CVE-2026-28538, CVE-2026-28539, CVE-2026-28549, CVE-2026-28537, CVE-2026-28544, CVE-2026-28552, CVE-2026-28540, CVE-2026-28546, CVE-2026-28551

Google Patches Android Zero-Day Vulnerability CVE-2023-21036 | Enigma Security posted on the topic | LinkedIn

Trust: 3.75

Fetched: March 8, 2026, 9:40 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
vendor: apple model: iphone
vendor: apple model: webkit
db: NVD ids: CVE-2023-21036

CISA Warns of Actively Exploited Memory Corruption Vulnerability in Qualcomm Chipsets

Trust: 6.0

Fetched: March 8, 2026, 9:40 a.m., Published: March 4, 2026, 2:29 p.m.
 Vulnerabilities: integer overflow, improper validation, privilege escalation...
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2026-21385

Cisco Nexus 3600 and 9500-R Series Switching Platforms Layer 2 Loop Denial of Service Vulnerability

Trust: 5.0

Fetched: March 8, 2026, 9:40 a.m., Published: Feb. 25, 2026, 3:59 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: cisco nx-os
vendor: cisco model: nx-os
vendor: cisco model: nexus 7000
vendor: cisco model: series
vendor: cisco model: firepower
vendor: cisco model: nexus 9000 series
vendor: cisco model: mds 9000 series
vendor: cisco model: nexus
vendor: cisco model: series switches
vendor: cisco model: nexus 9000
vendor: cisco model: mds 9000
vendor: cisco model: nx-os software
vendor: cisco model: firepower 9300
vendor: cisco model: firepower 2100
vendor: cisco model: nexus 3000

Update Canonical Ubuntu Desktop: USN-8068-1: Intel Microcode vulnerability

Trust: 3.25

Fetched: March 8, 2026, 9:39 a.m., Published: Jan. 8, 8068, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: canonical model: ubuntu

Feds take notice of iOS vulnerabilities exploited under mysterious circumstances - Ars Technica

Related entries in the VARIoT vulnerabilities database: VAR-202012-0746, VAR-202108-1267, VAR-202012-0782

Trust: 4.75

Fetched: March 8, 2026, 9:38 a.m., Published: March 6, 2026, 7:41 p.m.
 Vulnerabilities: integer overflow
Affected productsExternal IDs
vendor: apple model: iphone
db: NVD ids: CVE-2020-27950, CVE-2024-23222, CVE-2021-30952, CVE-2024-23296, CVE-2023-43000, CVE-2023-38606, CVE-2025-23222, CVE-2023-32409, CVE-2023-41974, CVE-2022-48503, CVE-2024-23225, CVE-2023-32434, CVE-2020-27932

Update Google Chrome now to fix this zero-day vulnerability

Trust: 3.75

Fetched: March 8, 2026, 9:38 a.m., Published: Feb. 16, 2026, 3:36 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: google chrome
vendor: google model: chrome
db: NVD ids: CVE-2026-2441

Google Rolls Out Critical March 2026 Android Security Patch Fixing 129 Vulnerabilities

Trust: 3.0

Fetched: March 8, 2026, 9:38 a.m., Published: March 4, 2026, 8:24 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android