25209 matches found
Apple iOS and iPadOS Information Disclosure Vulnerability
Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for the iPad tablet computer. An information disclosure vulnerability exists in Apple iOS and iPadOS, which stems from a logging issue that could be exploited by an attacker to disclose sensitive use...
Apple iOS and iPadOS Logic Issues Insufficient Checks Vulnerability
Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for the iPad tablet computer. Apple iOS and iPadOS contain a logical issue with an insufficiently checked vulnerability that can be exploited by an attacker to view sensitive user information...
Apple iOS and iPadOS Improvements for Underchecked Vulnerabilities
Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for the iPad tablet computer. Apple iOS and iPadOS contain an Improvement Check Insufficiency vulnerability that can be exploited by attackers to cause an application to monitor keystrokes without th...
Critical Photon OS Security Update - PHSA-2025-4.0-0903
Updates of 'polkit', 'lasso', 'curl', 'rubygem-yajl-ruby' packages of Photon OS have been released...
Critical Photon OS Security Update - PHSA-2025-5.0-0674
Updates of 'lasso' packages of Photon OS have been released...
PT-2025-45579
What is the critical vulnerability being exploited in the ongoing cyber attacks targeting unpatched Cisco IOS XE devices in Australia, linked to the implant known as BADCANDY? A CVE-2021-34527 B CVE-2023-20198 C CVE-2022-12345 D CVE-2023-10554...
GHSA-PWHC-RPQ9-4C8W vulnerabilities
Vulnerabilities for packages: flux-source-controller, cilium-cli, envoy-gateway, neuvector-scanner, skaffold, cluster-api-helm-controller, ctop, containerd, helm-push, k8sgpt, syft, gatekeeper, kargo, kaniko, rancher-helm, kube-arangodb, kubescape-operator, gogatekeeper, melange, nerdctl,...
USN-7860-4: Linux kernel (Real-time) vulnerability
Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...
USN-7860-3 linux-fips, linux-aws-fips, inux-gcp-fips vulnerability
Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...
Amazon Linux 2023 : libnvidia (ALAS2023NVIDIA-2025-250)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-250 advisory. NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalatio...
Photon OS 4.0: Binutils PHSA-2025-4.0-0901
An update of the binutils package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0901. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Important Photon OS Security Update - PHSA-2025-5.0-0670
Updates of 'linux-esx', 'binutils', 'linux' packages of Photon OS have been released...
CVE-2023-43000
A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption. Mitigation Do not process or load untrusted web content with WebKitGTK. In Red Hat Enterprise Linux 7, the following packages require...
Google Chrome Security Update (stable-channel-update-for-desktop-2025-11) - Mac OS X
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...
CVE-2025-43418
This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1. An attacker with physical access to a locked device may be able to view sensitive user information...
CVE-2025-43418
This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1. An attacker with physical access to a locked device may be able to view sensitive user information...
EUVD-2025-37930
This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2. An attacker with physical access to a locked device may be able to view sensitive user information...
EUVD-2023-47421
A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.5, iOS 16.6 and iPadOS 16.6, Safari 16.6. Processing maliciously crafted web content may lead to memory corruption...
CVE-2025-20358
A vulnerability in the Contact Center Express CCX Editor application of Cisco Unified CCX could allow an unauthenticated, remote attacker to bypass authentication and obtain administrative permissions pertaining to script creation and execution. This vulnerability is due to improper authenticatio...
CVE-2025-20374
Technical details about CVE-2025-20374 are not publicly provided in the connected documents. Please monitor for updates from Cisco and Red Hat advisories for affected products, impact scope, and remediation.