325 matches found
About the security content of tvOS 26.1
About the security content of tvOS 26.1 This document describes the security content of tvOS 26.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...
About the security content of tvOS 26.1
About the security content of tvOS 26.1 This document describes the security content of tvOS 26.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...
About the security content of watchOS 26.1
About the security content of watchOS 26.1 This document describes the security content of watchOS 26.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are availabl...
About the security content of macOS Sequoia 15.7.2
About the security content of macOS Sequoia 15.7.2 This document describes the security content of macOS Sequoia 15.7.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or...
About the security content of macOS Tahoe 26.1
About the security content of macOS Tahoe 26.1 This document describes the security content of macOS Tahoe 26.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...
About the security content of watchOS 26.1
About the security content of watchOS 26.1 This document describes the security content of watchOS 26.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are availabl...
About the security content of visionOS 26.1
About the security content of visionOS 26.1 This document describes the security content of visionOS 26.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...
Improper Certificate Validation
Dragonfly is vulnerable to Improper Certificate Validation. The vulnerability is due to TLS certificate verification being disabled in HTTP clients, which allows an attacker to perform a man-in-the-middle attack and supply invalid data, leading to denial of service and file integrity issues...
CVE-2025-34294
Wazuh's File Integrity Monitoring FIM, when configured with automatic threat removal, contains a time-of-check/time-of-use TOCTOU race condition that can allow a local, low-privileged attacker to cause the Wazuh service running as NT AUTHORITY\SYSTEM to delete attacker-controlled files or paths...
PT-2025-44323
Name of the Vulnerable Software and Affected Versions Wazuh versions prior to 4.11.0 Description Wazuh is a platform for threat prevention, detection, and response. A flaw exists in the fim alert implementation where it does not verify if the return value of ctime r is NULL before using it with...
EUVD-2025-36535
Wazuh's File Integrity Monitoring FIM, when configured with automatic threat removal, contains a time-of-check/time-of-use TOCTOU race condition that can allow a local, low-privileged attacker to cause the Wazuh service running as NT AUTHORITY\SYSTEM to delete attacker-controlled files or paths...
CVE-2025-34294
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority as the behavior originates from a documentation-published Active Response example script. Please refer to this advisory https://github.com/wazuh/wazuh-documentation/security/advisories/GHSA-46r5-xp98-fpgg...
CVE-2025-34294
...
CVE-2025-34294
This CVE entry is rejected/not used and does not represent an active vulnerability.
CVE-2025-34294
...
编号撤回
Wazuh File Integrity Monitoring is a file integrity monitoring software from Wazuh USA. A security vulnerability exists in Wazuh File Integrity Monitoring that stems from insufficient synchronization and inadequate final path validation in the threat removal workflow, which could lead to local...
PT-2025-44187
Name of the Vulnerable Software and Affected Versions Wazuh affected versions not specified Description A time-of-check/time-of-use TOCTOU race condition exists in the File Integrity Monitoring FIM component when automatic threat removal is enabled. This can allow a local, low-privileged attacker...
EUVD-2019-4386
Malware in sbrugna...
EUVD-2020-3961
Malware in sbrugna...
EUVD-2020-29044
Malware in sbrugna...