The vulnerability of the Mozilla Firefox browser on Android operating systems relates to a violation of data protection mechanisms, allowing attackers to circumvent existing security restrictions.

The vulnerability of the Mozilla Firefox browser on Android operating systems is related to a flaw in the data protection mechanism. Exploiting this vulnerability allows an attacker to bypass existing security restrictions remotely...

CVE-2025-43260

This issue was addressed with improved data protection. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. An app may be able to hijack entitlements granted to other privileged apps...

CVE-2025-43260

This issue was addressed with improved data protection. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. An app may be able to hijack entitlements granted to other privileged apps...

CVE-2025-43220

This issue was addressed with improved validation of symlinks. This issue is fixed in iPadOS 17.7.9, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to access protected user data...

CVE-2025-43225

A logging issue was addressed with improved data redaction. This issue is fixed in iPadOS 17.7.9, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to access sensitive user data...

Dell Data Protection Advisor 日志信息泄露漏洞

Dell Data Protection Advisor is a reporting and analytics platform from Dell USA. A log information disclosure vulnerability exists in Dell Data Protection Advisor versions 2.6 through 3.37-30, which originates when sensitive information is inserted into a log file, potentially leading to...

The vulnerability of the AutoGRAPH Web monitoring software platform lies in the insufficient protection of operational data, which allows attackers to disclose the protected information.

The vulnerability of the AutoGRAPH Web monitoring software platform lies in the insufficient protection of operational data. Exploiting this vulnerability allows a malicious actor to disclose sensitive information by sending a specially crafted POST request...

CVE-2025-43206

CVE-2025-43206 describes a local path traversal in macOS where directory-path parsing lacked sufficient validation. Fixed in macOS updates: Sequoia 15.6, Ventura 13.7.7, and Sonoma 14.7.7. The issue could let an app access protected user data due to improved path validation. The CVSS v3.1 base sc...

CVE-2025-43260

CVE-2025-43260 affects Apple macOS Sequoia (15.6) and macOS Sonoma (14.7.7). The issue could allow an app to hijack entitlements granted to other privileged apps, representing a local-attack surface with low confidentiality/ integrity impact per the provided metrics. The vulnerability is mitigate...

CVE-2025-43260

This issue was addressed with improved data protection. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. An app may be able to hijack entitlements granted to other privileged apps...

CVE-2025-43260

This issue was addressed with improved data protection. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. An app may be able to hijack entitlements granted to other privileged apps...

CVE-2025-43195

An issue existed in the handling of environment variables. This issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to access sensitive user data...

CVE-2025-43198

The CVE-2025-43198 issue affects macOS Sequoia and macOS Sonoma; the vulnerability could allow an app to access protected user data. It has been addressed by removing the vulnerable code and is fixed in macOS Sequoia 15.6 and macOS Sonoma 14.7.7. The available documents do not specify the exact r...

CVE-2025-43198

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. An app may be able to access protected user data...

CVE-2025-43185

CVE-2025-43185 relates to a downgrade issue in macOS Sequoia that could allow an app to access protected user data. The fixed version is macOS Sequoia 15.6, which implements additional code-signing restrictions to mitigate the issue. The public records describe the vulnerability as a downgrade/pa...

CVE-2025-43185

A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sequoia 15.6. An app may be able to access protected user data...

CVE-2025-43220

Apple CVE-2025-43220 relates to insufficient symlink validation. Affected products include iPadOS 17.7.9 and macOS 15.6 Sequoia, 14.7.7 Sonoma, and 13.7.7 Ventura. The issue may allow an app to access protected user data. It is addressed by Apple through updates to those OS versions (per the CVE ...

CVE-2025-43220

This issue was addressed with improved validation of symlinks. This issue is fixed in iPadOS 17.7.9, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to access protected user data...

mod_auth_openidc:2.3 security update

An update is available for module.cjose, module.modauthopenidc, modauthopenidc, cjose. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The modauthopenidc is an...

PT-2025-31284 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 15.6 Description: A flaw allows an application to potentially access protected user data due to a downgrade issue. This issue was addressed with additional code-signing restrictions. Recommendations: Update to macOS...