Lucene search
K

148 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/04 5:17 p.m.4 views

CVE-2026-20044

A vulnerability in the lockdown mechanism of Cisco Secure Firewall Management Center FMC Software could allow an authenticated, local attacker to perform arbitrary commands as root. This vulnerability is due to insufficient restrictions on remediation modules while in lockdown mode. An attacker...

6CVSS6.2AI score0.00138EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/04 5:17 p.m.4 views

CVE-2026-20044 Cisco Secure Firewall Management Center Command Injection Vulnerability

A vulnerability in the lockdown mechanism of Cisco Secure Firewall Management Center FMC Software could allow an authenticated, local attacker to perform arbitrary commands as root. This vulnerability is due to insufficient restrictions on remediation modules while in lockdown mode. An attacker...

6CVSS6.2AI score0.00138EPSS
Exploits0References1
CVE
CVE
added 2026/03/04 5:17 p.m.35 views

CVE-2026-20044

The CVE-2026-20044 affects Cisco Secure Firewall Management Center (FMC) Software. The issue stems from insufficient restrictions on remediation modules during lockdown mode, allowing an authenticated local attacker with admin credentials to send crafted input to the system CLI and potentially ex...

6CVSS6.2AI score0.00138EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/04 5:17 p.m.29 views

CVE-2026-20044 Cisco Secure Firewall Management Center Command Injection Vulnerability

A vulnerability in the lockdown mechanism of Cisco Secure Firewall Management Center FMC Software could allow an authenticated, local attacker to perform arbitrary commands as root. This vulnerability is due to insufficient restrictions on remediation modules while in lockdown mode. An attacker...

6CVSS0.00138EPSS
Exploits0References1
Cisco
Cisco
added 2026/03/04 4:0 p.m.10 views

Cisco Secure Firewall Management Center Software Command Injection Vulnerability

A vulnerability in the lockdown mechanism of Cisco Secure Firewall Management Center FMC Software could allow an authenticated, local attacker to perform arbitrary commands as root. This vulnerability is due to insufficient restrictions on remediation modules while in lockdown mode. An attacker...

6CVSS6.2AI score0.00138EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/02/18 8:29 p.m.19 views

CVE-2025-1272

The Linux Kernel lockdown mode for kernel versions starting on 6.12 and above for Fedora Linux has the lockdown mode disabled without any warning. This may allow an attacker to gain access to sensitive information such kernel memory mappings, I/O ports, BPF and kprobes. Additionally unsigned...

7.7CVSS7.5AI score0.00231EPSS
Exploits0
OSV
OSV
added 2026/02/18 2:48 p.m.8 views

CLSA-2026-1771332544 grub2: Fix of CVE-2025-0689

CVE-2025-0689: don't load UDF module in the lockdown mode...

7.8CVSS6.9AI score0.00444EPSS
Exploits0References1
Wired Threat Level
Wired Threat Level
added 2026/02/07 11:30 a.m.6 views

Moltbook, the Social Network for AI Agents, Exposed Real Humans’ Data

Plus: Apple’s Lockdown mode keeps the FBI out of a reporter’s phone, Elon Musk’s Starlink cuts off Russian forces, and more...

5.3AI score
Exploits0
Schneier on Security
Schneier on Security
added 2026/02/06 12:0 p.m.8 views

iPhone Lockdown Mode Protects Washington Post Reporter

404Media is reporting that the FBI could not access a reporter's iPhone because it had Lockdown Mode enabled: The court record shows what devices and data the FBI was able to ultimately access, and which devices it could not, after raiding the home of the reporter, Hannah Natanson, in January as...

5.5AI score
Exploits0
The Hacker News
The Hacker News
added 2026/01/27 4:54 p.m.12 views

WhatsApp Rolls Out Lockdown-Style Security Mode to Protect Targeted Users From Spyware

Meta on Tuesday announced it's adding Strict Account Settings on WhatsApp to secure certain users against advanced cyber attacks because of who they are and what they do. The feature, similar to Lockdown Mode in Apple iOS and Advanced Protection in Android, aims to protect individuals, such as...

6.2AI score
Exploits0
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.3 views

Astra Linux – Vulnerability in grub2

A flaw was discovered in grub2. The dump command of grub is not blocked when grub is in lockdown mode, which allows the user to read any memory information. An attacker could exploit this vulnerability to extract signatures, salts, and other sensitive information from the memory...

4.4CVSS6.4AI score0.00286EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/18 9:34 p.m.8 views

CVE-2025-43526

This issue was addressed with improved URL validation. This issue is fixed in Safari 26.2, macOS Tahoe 26.2. On a Mac with Lockdown Mode enabled, web content opened via a file URL may be able to use Web APIs that should be restricted...

9.8CVSS5.8AI score0.00507EPSS
Exploits0References1
NVD
NVD
added 2025/12/17 9:16 p.m.8 views

CVE-2025-43526

This issue was addressed with improved URL validation. This issue is fixed in Safari 26.2, macOS Tahoe 26.2. On a Mac with Lockdown Mode enabled, web content opened via a file URL may be able to use Web APIs that should be restricted...

9.8CVSS0.00507EPSS
Exploits0References2
OSV
OSV
added 2025/12/17 9:16 p.m.4 views

CVE-2025-43526

This issue was addressed with improved URL validation. This issue is fixed in macOS Tahoe 26.2, Safari 26.2. On a Mac with Lockdown Mode enabled, web content opened via a file URL may be able to use Web APIs that should be restricted...

9.8CVSS5.7AI score0.00507EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/17 8:46 p.m.3 views

CVE-2025-43526

This issue was addressed with improved URL validation. This issue is fixed in macOS Tahoe 26.2, Safari 26.2. On a Mac with Lockdown Mode enabled, web content opened via a file URL may be able to use Web APIs that should be restricted...

5.6AI score0.00507EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/17 8:46 p.m.28 views

CVE-2025-43526

This issue was addressed with improved URL validation. This issue is fixed in Safari 26.2, macOS Tahoe 26.2. On a Mac with Lockdown Mode enabled, web content opened via a file URL may be able to use Web APIs that should be restricted...

0.00507EPSS
Exploits0References2
CVE
CVE
added 2025/12/17 8:46 p.m.25 views

CVE-2025-43526

CVE-2025-43526 affects Apple macOS Tahoe < 26.2 and Safari

9.8CVSS5.8AI score0.00507EPSS
Exploits0References2Affected Software2
CNNVD
CNNVD
added 2025/12/17 12:0 a.m.3 views

Apple Safari和Apple macOS 安全漏洞

Apple Safari and Apple macOS are both products of Apple Inc. Apple Safari is a web browser that is the default browser shipped with the Mac OS X and iOS operating systems. apple macOS is a specialized operating system developed specifically for Mac computers. A security vulnerability exists in...

9.8CVSS6AI score0.00507EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/12 12:0 a.m.11 views

PT-2025-51902

Name of the Vulnerable Software and Affected Versions macOS versions prior to Tahoe 26.2 Safari versions prior to 26.2 Description A flaw exists due to improved URL validation. Specifically, on a Mac with Lockdown Mode enabled, web content opened via a file URL may be able to use Web APIs that...

9.8CVSS6.2AI score0.00507EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/10/16 8:41 p.m.5 views

CVE-2025-43280

The issue was resolved by not loading remote images. This issue is fixed in iOS 18.6 and iPadOS 18.6. Forwarding an email could display remote images in Mail in Lockdown Mode...

4.7CVSS5.9AI score0.00196EPSS
Exploits0References1
Rows per page
Query Builder