CVE-2026-40425

creationtimestamp| type| source ---|---|--- 2026-05-28 05:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-01...

CVE-2023-40425

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14, macOS Monterey 12.7.1. An app with root privileges may be able to access private information...

CVE-2023-40425

creationtimestamp| type| source ---|---|--- 2025-09-03 08:52:08+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lxwaw3luysf2...

CVE-2024-40425

File Upload vulnerability in Nanjin Xingyuantu Technology Co Sparkshop Spark Mall B2C Mall v.1.1.6 and before allows a remote attacker to execute arbitrary code via the contorller/common.php component...

CVE-2022-40425

The d8s-html for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-networking package. The affected version is 0.1.0...

CVE-2024-40425

creationtimestamp| type| source ---|---|--- 2024-07-16 21:18:15+00:00| seen| https://t.me/cvedetector/987...

CVE-2024-40425

File Upload vulnerability in Nanjin Xingyuantu Technology Co Sparkshop Spark Mall B2C Mall v.1.1.6 and before allows a remote attacker to execute arbitrary code via the contorller/common.php component...

CVE-2023-40425

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14, macOS Monterey 12.7.1. An app with root privileges may be able to access private information...

CVE-2023-40425

CVE-2023-40425 concerns a privacy flaw in macOS where log entries were not properly redacted. The issue affects macOS Monterey 12.7.1 and macOS Sonoma 14 fixes, with an app that has root privileges potentially accessing private information through log data. Affected component: log entry handling;...

CVE-2022-40425

The d8s-html for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-networking package. The affected version is 0.1.0...

CVE-2022-40425

The d8s-html for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-networking package. The affected version is 0.1.0...

CVE-2022-40425

The CVE-2022-40425 entry refers to the PyPI package d8s-html (Python) where version 0.1.0 bundles a backdoor via the third‑party democritus-networking package. The vulnerability is described as potential remote code execution with a high impact across confidentiality, integrity, and availability ...

CVE-2021-40425

creationtimestamp| type| source ---|---|--- 2022-04-15 00:19:17+00:00| seen| https://t.me/cibsecurity/40808...

CVE-2021-40425

An out-of-bounds read vulnerability exists in the IOCTL GetProcessCommand and B03 of Webroot Secure Anywhere 21.4. A specially-crafted executable can lead to denial of service. An attacker can issue an ioctl to trigger this vulnerability. An out-of-bounds read vulnerability exists in the IOCTL...

CVE-2021-40425

An out-of-bounds read vulnerability exists in the IOCTL GetProcessCommand and B03 of Webroot Secure Anywhere 21.4. A specially-crafted executable can lead to denial of service. An attacker can issue an ioctl to trigger this vulnerability. An out-of-bounds read vulnerability exists in the IOCTL...

CVE-2021-40425

CVE-2021-40425 affects Webroot Secure Anywhere 21.4. The vulnerability is an out-of-bounds read in the device driver WRCore_x64 and related IOCTL handlers (IOCTL GetProcessCommand and IOCTL_B03). The issue stems from insufficient bounds validation when constructing a getProcessInfo/webroot_irp st...