K000154686: Intel Xeon processors vulnerability CVE-2025-24305

Security Advisory Description Insufficient control flow management in the Alias Checking Trusted Module ACTM firmware for some IntelR XeonR processors may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2025-24305 Impact There is no impact; F5 products...

PT-2025-37841

Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.7 iPadOS versions prior to 18.7 macOS versions prior to Tahoe 26 tvOS versions prior to 26 watchOS versions prior to 26 visionOS versions prior to 26 Description An out-of-bounds access issue existed due to insufficien...

PT-2025-37852

Name of the Vulnerable Software and Affected Versions: macOS versions prior to Tahoe 26 Description: An out-of-bounds read issue existed due to insufficient bounds checking. This could allow a malicious application to disclose coprocessor memory. Recommendations: Update to macOS Tahoe 26 or later...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of iotype checking, which could lead to memory corruption...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of SIMD availability checking, which could lead to register corruption or miscalculated MACs...

Apple macOS 安全漏洞

Apple macOS is a specialized operating system developed for Mac computers by Apple, Inc. A security vulnerability exists in Apple macOS that stems from insufficient privilege checking and could lead to accessing sensitive user data. The following versions are affected: macOS Sequoia prior to 15.7...

Apple macOS 安全漏洞

Apple macOS is a suite of specialized operating systems from the U.S.-based Apple Inc. developed specifically for Mac computers. A security vulnerability exists in Apple macOS, which stems from insufficient boundary checking and could lead to applications accessing sensitive user data. The...

PT-2025-37818

Name of the Vulnerable Software and Affected Versions: macOS Sequoia versions prior to 15.7 macOS Sonoma versions prior to 14.8 macOS Tahoe versions prior to 26 Description: A buffer overflow existed due to insufficient bounds checking. This could allow an application to cause unexpected system...

PT-2025-37827

Name of the Vulnerable Software and Affected Versions: macOS versions prior to Sequoia 15.7 macOS versions prior to Sonoma 14.8 macOS versions prior to Tahoe 26 Description: An out-of-bounds read issue was addressed through improved bounds checking. This could allow an application to access...

Apple多款产品 安全漏洞

Apple iOS is an operating system developed for mobile devices.Apple tvOS is a smart TV operating system.Apple watchOS is a smart watch operating system.Apple watchOS is a smart watch operating system.Apple watchOS is a smart watch operating system.Apple watchOS is a smart watch operating...

PT-2025-37840

Name of the Vulnerable Software and Affected Versions: macOS versions prior to Tahoe 26 tvOS versions prior to 26 watchOS versions prior to 26 visionOS versions prior to 26 iOS versions prior to 26 iPadOS versions prior to 26 Description: An out-of-bounds access issue was addressed with improved...

CVE-2025-39789 crypto: x86/aegis - Add missing error checks

In the Linux kernel, the following vulnerability has been resolved: crypto: x86/aegis - Add missing error checks The skcipherwalk functions can allocate memory and can fail, so checking for errors is necessary...

Microsoft Office Code Execution Vulnerability (CNVD-2025-26726)

Microsoft Office is an office software suite of products from the U.S. company Microsoft Microsoft. The product's common components include Word, Excel, Access, Powerpoint, FrontPage, etc.. A code execution vulnerability exists in Microsoft Office, which is caused due to improper boundary checkin...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of error checking and could lead to memory allocation failures...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from improper boundary checking, which may result in inconsistent register boundaries...

WordPress plugin My WP Translate 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a lack of null pointer checking, which could lead to null pointer dereferencing...

Microsoft Office Visio Code Execution Vulnerability

Microsoft Office Visio is a U.S. Microsoft Microsoft Office software series responsible for drawing flowcharts and schematic diagrams in the software. A code execution vulnerability exists in Microsoft Office Visio, which is caused due to improper boundary checking. An attacker could exploit the...

ROS-20250911-03

A vulnerability in the GIMP graphical editor is related to integer overflow. Exploitation of the vulnerability could allow an attacker to execute arbitrary code on the target system A vulnerability in the GIMP graphical editor is related to an operation exceeding buffer boundaries in memory when...

Malicious code in checking-ips (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 941a9d77f27a5cf03000409003dc26dc454bbdfe54ff4e4bdcd72c5184e45263 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...