To fix this we really don't need much.
The first thing is that software defects should not be excluded from warranty (that includes disclosed vulnerabilities).
Then we just need a label that clearly, in standardised manner, informs the customer:
1). how long is the warranty for all defects
2). what is the manufacturer designed expected lifetime of the device (that means, at the minimum, that replacement parts, including software, will be available)
3). what (if present) is the length of time software updates of the device will be provided
allow for paid/free options on top of that, and then there's _some_ chance that the market rights itself up