CVE-2025-56232

GOG Galaxy 2.0.0.2 suffers from Missing SSL Certificate Validation. An attacker who controls the local network, DNS, or a proxy can perform a man-in-the-middle MitM attack to intercept update requests and replace installer or update packages with malicious files...

CVE-2025-5296

CWE-59: Improper Link Resolution Before File Access 'Link Following' vulnerability exists that could cause arbitrary data to be written to protected locations, potentially leading to escalation of privilege, arbitrary file corruption, exposure of application and system information or persistent...

BlackBerry CylanceOPTICS 安全漏洞

BlackBerry CylanceOPTICS is a cloud-enabled Endpoint Detection and Response EDR solution from BlackBerry Canada. A security vulnerability exists in BlackBerry CylanceOPTICS versions 3.2 and 3.3, which stems from a tampering vulnerability in the installer package that allows an attacker to uninsta...

CVE-2023-22635

A download of code without Integrity check vulnerability CWE-494 in FortiClientMac version 7.0.0 through 7.0.7, 6.4 all versions, 6.2 all versions, 6.0 all versions, 5.6 all versions, 5.4 all versions, 5.2 all versions, 5.0 all versions and 4.0 all versions may allow a local attacker to escalate...