Lucene search
K

394 matches found

Positive Technologies
Positive Technologies
added 2026/02/12 12:0 a.m.4 views

PT-2026-7940

iNetTools for iOS 8.20 contains a denial of service vulnerability in the Whois feature that allows attackers to crash the application by manipulating input. Attackers can paste a specially crafted 98-character buffer into the Domain Name field to trigger an application crash...

7.5CVSS5.8AI score0.00304EPSS
Exploits0References4
OSV
OSV
added 2026/02/11 11:16 p.m.5 views

CVE-2026-20638

A logic issue was addressed with improved checks. This issue is fixed in iOS 26.3 and iPadOS 26.3. A user with Live Caller ID app extensions turned off could have identifying information leaked to the extensions...

5.5CVSS5.8AI score0.00144EPSS
Exploits0References1
NVD
NVD
added 2026/02/11 11:16 p.m.4 views

CVE-2026-20636

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.3, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. Processing maliciously crafted web content may lead to an unexpected process crash...

8.8CVSS0.0038EPSS
Exploits0References18
NVD
NVD
added 2026/02/11 11:16 p.m.4 views

CVE-2025-43537

A path handling issue was addressed with improved validation. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, iOS 26.2 and iPadOS 26.2. Restoring a maliciously crafted backup file may lead to modification of protected system files...

5.5CVSS0.00475EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/11 10:58 p.m.3 views

CVE-2026-20628

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Sequoia 15.7.4, macOS Sonoma 14.8.4, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. An app may be able to break out of its sandbox...

7.1CVSS5.8AI score0.00116EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/02/11 10:58 p.m.4 views

CVE-2026-20655

An authorization issue was addressed with improved state management. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3. An attacker with physical access to a locked device may be able to view sensitive user information...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/11 10:58 p.m.27 views

CVE-2026-20661

An authorization issue was addressed with improved state management. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3. An attacker with physical access to a locked device may be able to view sensitive user information...

0.00153EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.8 views

Apple iOS和Apple iPadOS 安全漏洞

Apple iOS and Apple iPadOS are products of the American company Apple. Apple iOS is an operating system developed for mobile devices. Apple iPadOS is an operating system for iPad tablets. Both Apple iOS and Apple iPadOS have security vulnerabilities that stem from authorization issues, which may...

4.6CVSS5.8AI score0.00153EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/11 12:0 a.m.6 views

PT-2026-7759

Name of the Vulnerable Software and Affected Versions macOS versions prior to Tahoe 26.3 macOS versions prior to Sonoma 14.8.4 macOS versions prior to Sequoia 15.7.4 iOS versions prior to 18.7.5 iPadOS versions prior to 18.7.5 visionOS versions prior to 26.3 Description The issue involves improve...

5.4AI score0.00132EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.7 views

Apple多款产品 安全漏洞

Apple Safari is a web browser that is the default browser that comes with the Mac OS X and iOS operating systems.Apple iOS is a set of operating systems developed for mobile devices.Apple macOS is a set of specialized operating systems developed specifically for Mac computers.Apple Safari is a we...

5.5CVSS7.2AI score0.00229EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.6 views

Apple多款产品 安全漏洞

Apple iOS is an operating system developed for mobile devices. apple tvOS is a smart TV operating system. apple watchOS is a smart watch operating system. A code execution vulnerability exists in several Apple products, which can be exploited by an attacker to execute arbitrary code...

7.8CVSS6.6AI score0.01319EPSS
Exploits4References7
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.5 views

Apple多款产品 安全漏洞

Apple iOS, among others, are products of the American company Apple. Apple iOS is an operating system developed for mobile devices. Apple macOS is a specialized operating system designed for Mac computers. Apple iPadOS is an operating system for iPad tablets. Several of Apple’s products have...

7.8CVSS7.1AI score0.00254EPSS
Exploits0References8
CVE
CVE
added 2026/01/16 5:6 p.m.12 views

CVE-2025-24090

CVE-2025-24090 affects Apple's iOS 18.3 and iPadOS 18.3. The issue is a permissions flaw that could allow an app to enumerate a user’s installed apps. Root cause described as a permissions issue addressed with additional restrictions; Apple notes the fix is included in iOS 18.3/iPadOS 18.3. Explo...

3.3CVSS5.8AI score0.00128EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2026/01/16 5:6 p.m.12 views

CVE-2024-54556

CVE-2024-54556 affects Apple devices running iOS 18.1 / iPadOS 18.1. The issue enables viewing restricted content from the lock screen due to a state-management flaw and has been fixed in the 18.1 updates. The description across sources consistently notes a "improved state management" fix with th...

2.4CVSS5.8AI score0.00162EPSS
Exploits0References1Affected Software2
RedhatCVE
RedhatCVE
added 2026/01/09 11:55 a.m.6 views

CVE-2018-4397

Analytics data was sent using HTTP rather than HTTPS. This was addressed by sending analytics data using HTTPS. This issue affected versions prior to Apple Support 2.4 for iOS...

4.3CVSS6.5AI score0.00833EPSS
Exploits0References1
NVD
NVD
added 2025/12/19 5:15 p.m.5 views

CVE-2025-14812

ArcSearch for iOS versions prior to 1.45.2 could display a different domain in the address bar than the content being shown after an iframe-triggered URI-scheme navigation, increasing spoofing risk...

7.5CVSS0.0023EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/15 6:41 a.m.26 views

CVE-2025-14021

The in-app browser in LINE client for iOS versions prior to 14.14 is vulnerable to address bar spoofing, which could allow attackers to execute malicious JavaScript within iframes while displaying trusted URLs, enabling phishing attacks through overlaid malicious content...

4.3CVSS0.00177EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/12 8:56 p.m.2 views

CVE-2025-43530

This issue was addressed with improved checks. This issue is fixed in macOS Tahoe 26.2, macOS Sonoma 14.8.3, macOS Sequoia 15.7.3, iOS 18.7.3 and iPadOS 18.7.3. An app may be able to access sensitive user data...

5.5AI score0.00197EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/11/25 12:25 a.m.6 views

SUSE CVE-2025-43431

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.1, iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1. Processing maliciously crafted web content may lead to memory corruption...

7.1CVSS6.9AI score0.00786EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/11/18 5:56 a.m.6 views

CVE-2025-60022

Improper certificate validation vulnerability exists in 'デジラアプリ' App for iOS prior to ver.80.10.00. If this vulnerability is exploited, a man-in-the-middle attack may allow an attacker to eavesdrop on and/or tamper with an encrypted communication...

4.8CVSS5AI score0.00121EPSS
Exploits0References1
Rows per page
Query Builder