Sign-up

VARIoT news about IoT security

SSA-819629

Trust: 3.0

Fetched: April 9, 2025, 9:13 a.m., Published: April 1, 2025, midnight
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2024-54092

How to Identify Unknown Devices Connected to Your Network | GeeksforGeeks

Trust: 3.5

Fetched: April 8, 2025, 9:42 a.m., Published: Nov. 11, 2022, 7:02 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: macos

Aplikacja uniwersalna systemu Windows Dell Update | Szczegóły sterownika | Dell Polska

Trust: 3.25

Fetched: April 8, 2025, 9:40 a.m., Published: May 5, 2000, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: dell model: latitude

Apple Backports Fixes for Three Actively Exploited Zero-Days Targeting Older Devices

Trust: 4.75

Fetched: April 8, 2025, 9:40 a.m., Published: April 1, 2025, 1:58 a.m.
 Vulnerabilities: authorization issue, authorization flaw, privilege escalation
Affected productsExternal IDs
vendor: apple model: webkit
vendor: apple model: safari
vendor: apple model: macos
db: NVD ids: CVE-2025-24200, CVE-2025-24085, CVE-2025-24201

Is The Sofistication In The Room With Us? - X-Forwarded-For and Ivanti Connect Secure (CVE-2025-22457)

Trust: 4.5

Fetched: April 8, 2025, 9:38 a.m., Published: April 4, 2025, 1:45 p.m.
 Vulnerabilities: buffer overflow, code execution, denial of service
Affected productsExternal IDs
db: NVD ids: CVE-2025-22457

CVE-2025-2189 - Information Disclosure Vulnerability in Tinxy Smart Devices - SecAlerts

Trust: 4.25

Fetched: April 8, 2025, 9:37 a.m., Published: April 5, 2025, midnight
 Vulnerabilities: information disclosure
Affected productsExternal IDs
db: NVD ids: CVE-2025-2189

Apple just finally patched a whole host of OS security issues on older devices, so update now | TechRadar

Trust: 5.0

Fetched: April 8, 2025, 9:36 a.m., Published: April 2, 2025, 11:27 a.m.
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: apple model: macos
vendor: apple model: webkit
db: NVD ids: CVE-2025-24200, CVE-2025-24085, CVE-2025-24201, CVE-2024-24201

MediaTek Releases Security Patch to Fix Vulnerabilities in Mobile and IoT Devices

Trust: 5.75

Fetched: April 8, 2025, 9:36 a.m., Published: April 7, 2025, 11:14 a.m.
 Vulnerabilities: code execution, privilege escalation, information disclosure...
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2025-20655, CVE-2025-20654, CVE-2025-20657, CVE-2025-20656, CVE-2025-20658

CVE-2025-2620: Critical Vulnerability Found in D-Link DAP-162 1.03 - Exploit Details and How to Safeguard Your Device

Related entries in the VARIoT vulnerabilities database: VAR-202503-2642

Trust: 5.0

Fetched: April 8, 2025, 9:36 a.m., Published: March 22, 2025, 3:15 p.m.
 Vulnerabilities: buffer overflow
Affected productsExternal IDs
db: NVD ids: CVE-2025-2620

Xiaomi Security Center

Trust: 3.75

Fetched: April 8, 2025, 9:35 a.m., Published: -
 Vulnerabilities: code execution, command injection
Affected productsExternal IDs
db: NVD ids: CVE-2024-45348, CVE-2024-45355, CVE-2024-45346, CVE-2024-45353, CVE-2024-45356, CVE-2024-45361, CVE-2024-45351, CVE-2024-45354, CVE-2023-26315, CVE-2024-45352

Cisco Meraki MX and Z Series AnyConnect VPN Denial of Service Vulnerability

Trust: 5.0

Fetched: April 8, 2025, 9:35 a.m., Published: April 2, 2025, 3:57 p.m.
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco model: meraki mx firmware
vendor: cisco model: meraki mx
vendor: cisco model: series

Update Canonical Ubuntu Server: USN-7396-1: OVN vulnerability

Trust: 3.25

Fetched: April 8, 2025, 9:34 a.m., Published: Jan. 8, 7396, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: canonical model: ubuntu

Ghost in the Router: China-Nexus Espionage Actor UNC3886 Targets Juniper Routers | Google Cloud Blog

Trust: 3.75

Fetched: April 8, 2025, 9:29 a.m., Published: March 12, 2025, 4:03 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: nexus
db: NVD ids: CVE-2025-21590

Google Patches Actively Exploited Android 0-Day Vulnerability

Trust: 4.0

Fetched: April 8, 2025, 9:27 a.m., Published: April 8, 2025, 8:15 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android
db: NVD ids: CVE-2025-22429, CVE-2025-22442, CVE-2024-53150, CVE-2025-22416, CVE-2024-53197, CVE-2025-22417

Update Canonical Ubuntu Desktop: USN-7411-1: OpenVPN vulnerability

Trust: 4.25

Fetched: April 8, 2025, 9:27 a.m., Published: Jan. 8, 7411, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: canonical model: ubuntu

ITSecurityWire | Leadership Insights | News | Views and Trends

Trust: 3.75

Fetched: April 8, 2025, 9:26 a.m., Published: -
 Vulnerabilities: default password
Affected productsExternal IDs

Update Canonical Ubuntu Desktop: USN-7414-1: XZ Utils vulnerability

Trust: 4.25

Fetched: April 8, 2025, 9:25 a.m., Published: Jan. 8, 7414, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: canonical model: ubuntu

CVE-2025-27593 - Cisco SDD Device Driver Code Execution Vulnerability

Trust: 5.0

Fetched: April 8, 2025, 9:25 a.m., Published: March 14, 2025, 1:15 p.m.
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2025-27593

Secure Messaging Apps Are Not as Safe as You Think, Says NSA-Here's Why

Trust: 3.0

Fetched: April 8, 2025, 9:24 a.m., Published: March 31, 2025, 11:30 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

CVE-2025-20658 : Permission Bypass Vulnerability in MediaTek Devices | SecurityVulnerability.io

Trust: 3.25

Fetched: April 8, 2025, 9:23 a.m., Published: April 7, 2025, 3:14 a.m.
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2025-20658