9292 matches found
CVE-2025-54388
Moby is an open source container framework developed by Docker Inc. that is distributed as Docker Engine, Mirantis Container Runtime, and various other downstream projects/products. In versions 28.2.0 through 28.3.2, when the firewalld service is reloaded it removes all iptables rules including...
CVE-2025-54388 Moby's Firewalld reload makes published container ports accessible from remote hosts
Moby is an open source container framework developed by Docker Inc. that is distributed as Docker Engine, Mirantis Container Runtime, and various other downstream projects/products. In versions 28.2.0 through 28.3.2, when the firewalld service is reloaded it removes all iptables rules including...
CVE-2025-43202
creationtimestamp| type| source ---|---|--- 2025-07-30 12:22:41+00:00| seen| https://bsky.app/profile/geeknik.bsky.social/post/3lv6mefs5h22e 2025-09-09 22:16:23+00:00| seen| https://bsky.app/profile/geeknik.bsky.social/post/3lygqnrnuxl2t 2026-04-03 15:23:03+00:00| seen|...
CVE-2025-38498
In the Linux kernel, the following vulnerability has been resolved: dochangetype: refuse to operate on unmounted/not ours mounts Ensure that propagation settings can only be changed for mounts located in the caller's mount namespace. This change aligns permission checking with the rest of mount2...
CVE-2025-38498
In the Linux kernel, the following vulnerability has been resolved: dochangetype: refuse to operate on unmounted/not ours mounts Ensure that propagation settings can only be changed for mounts located in the caller's mount namespace. This change aligns permission checking with the rest of mount2...
CVE-2025-4422
creationtimestamp| type| source ---|---|--- 2025-07-30 03:07:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lv5nd2fcfm2s 2025-07-30 06:01:15+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lv5x2d5nii2k...
CVE-2025-7996
creationtimestamp| type| source ---|---|--- 2025-07-30 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-716/...
CVE-2025-7994
creationtimestamp| type| source ---|---|--- 2025-07-30 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-714/...
CVE-2025-43246
This issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. An app may be able to access sensitive user data...
CVE-2025-43193
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to cause a denial-of-service...
CVE-2025-24119
This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges...
CVE-2025-31273
The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6, watchOS 11.6. Processing maliciously crafted web content may lead to memory corruption...
CVE-2025-43244
A race condition was addressed with improved state handling. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to cause unexpected system termination...
CVE-2025-43215
CVE-2025-43215 affects macOS Sequoia; the issue involves processing of malicious images that could disclose process memory. It is fixed in macOS Sequoia 15.6 via improved checks. Practical impact is memory disclosure when handling crafted images. Remediation: update to macOS Sequoia 15.6 or later...
CVE-2025-43220
This issue was addressed with improved validation of symlinks. This issue is fixed in iPadOS 17.7.9, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to access protected user data...
CVE-2025-43235
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6. An app may be able to cause a denial-of-service...
CVE-2025-53541
creationtimestamp| type| source ---|---|--- 2025-07-29 21:36:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lv52udehzz2e...
CVE-2025-53102 Discourse's WebAuthn challenge isn't cleared from user session after authentication
Discourse is an open-source community discussion platform. Prior to version 3.4.7 on the stable branch and version 3.5.0.beta.8 on the tests-passed branch, upon issuing a physical security key for 2FA, the server generates a WebAuthn challenge, which the client signs. The challenge is not cleared...
CVE-2025-50738
creationtimestamp| type| source ---|---|--- 2025-07-29 17:12:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lv4m3ubwc52z...
CVE-2025-6505
creationtimestamp| type| source ---|---|--- 2025-07-29 17:07:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lv4lsvt4fy2e...