Lucene search
K

25209 matches found

CNVD
CNVD
added 2025/11/10 12:0 a.m.3 views

Apple iOS and iPadOS Information Disclosure Vulnerability

Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for the iPad tablet computer. An information disclosure vulnerability exists in Apple iOS and iPadOS, which stems from a logging issue that could be exploited by an attacker to disclose sensitive use...

5.5CVSS5.7AI score0.0024EPSS
Exploits0References1
CNVD
CNVD
added 2025/11/10 12:0 a.m.10 views

Apple iOS and iPadOS Logic Issues Insufficient Checks Vulnerability

Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for the iPad tablet computer. Apple iOS and iPadOS contain a logical issue with an insufficiently checked vulnerability that can be exploited by an attacker to view sensitive user information...

4.6CVSS6.2AI score0.00217EPSS
Exploits0References1
CNVD
CNVD
added 2025/11/10 12:0 a.m.2 views

Apple iOS and iPadOS Improvements for Underchecked Vulnerabilities

Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for the iPad tablet computer. Apple iOS and iPadOS contain an Improvement Check Insufficiency vulnerability that can be exploited by attackers to cause an application to monitor keystrokes without th...

5.4CVSS6.3AI score0.00207EPSS
Exploits0References1
Photon
Photon
added 2025/11/10 12:0 a.m.3 views

Critical Photon OS Security Update - PHSA-2025-4.0-0903

Updates of 'polkit', 'lasso', 'curl', 'rubygem-yajl-ruby' packages of Photon OS have been released...

9.8CVSS7.5AI score0.00827EPSS
Exploits1
Photon
Photon
added 2025/11/10 12:0 a.m.4 views

Critical Photon OS Security Update - PHSA-2025-5.0-0674

Updates of 'lasso' packages of Photon OS have been released...

9.8CVSS7.4AI score0.00827EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2025/11/09 12:0 a.m.9 views

PT-2025-45579

What is the critical vulnerability being exploited in the ongoing cyber attacks targeting unpatched Cisco IOS XE devices in Australia, linked to the implant known as BADCANDY? A CVE-2021-34527 B CVE-2023-20198 C CVE-2022-12345 D CVE-2023-10554...

10CVSS7AI score0.99759EPSS
Exploits69References1
Wolfi
Wolfi
added 2025/11/08 7:47 a.m.6 views

GHSA-PWHC-RPQ9-4C8W vulnerabilities

Vulnerabilities for packages: flux-source-controller, cilium-cli, envoy-gateway, neuvector-scanner, skaffold, cluster-api-helm-controller, ctop, containerd, helm-push, k8sgpt, syft, gatekeeper, kargo, kaniko, rancher-helm, kube-arangodb, kubescape-operator, gogatekeeper, melange, nerdctl,...

5.8AI score
Exploits0
Ubuntu
Ubuntu
added 2025/11/07 10:37 a.m.6 views

USN-7860-4: Linux kernel (Real-time) vulnerability

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

5.5CVSS7.4AI score0.00331EPSS
Exploits0
OSV
OSV
added 2025/11/07 10:35 a.m.5 views

USN-7860-3 linux-fips, linux-aws-fips, inux-gcp-fips vulnerability

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

5.5CVSS5.8AI score0.00331EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/07 12:0 a.m.4 views

Amazon Linux 2023 : libnvidia (ALAS2023NVIDIA-2025-250)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-250 advisory. NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalatio...

7CVSS6.2AI score0.00224EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2025/11/07 12:0 a.m.2 views

Photon OS 4.0: Binutils PHSA-2025-4.0-0901

An update of the binutils package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0901. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

5.5CVSS4.8AI score0.00251EPSS
Exploits2References3
Photon
Photon
added 2025/11/07 12:0 a.m.2 views

Important Photon OS Security Update - PHSA-2025-5.0-0670

Updates of 'linux-esx', 'binutils', 'linux' packages of Photon OS have been released...

7.8CVSS6.8AI score0.00251EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/11/06 6:37 p.m.4 views

CVE-2023-43000

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption. Mitigation Do not process or load untrusted web content with WebKitGTK. In Red Hat Enterprise Linux 7, the following packages require...

8.8CVSS6.9AI score0.03901EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2025/11/06 12:0 a.m.4 views

Google Chrome Security Update (stable-channel-update-for-desktop-2025-11) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

8.8CVSS7.1AI score0.00238EPSS
Exploits0References1
NVD
NVD
added 2025/11/05 7:15 p.m.2 views

CVE-2025-43418

This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1. An attacker with physical access to a locked device may be able to view sensitive user information...

4.6CVSS0.00161EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/11/05 6:33 p.m.3 views

CVE-2025-43418

This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1. An attacker with physical access to a locked device may be able to view sensitive user information...

4.9AI score0.00161EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/05 6:33 p.m.3 views

EUVD-2025-37930

This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2. An attacker with physical access to a locked device may be able to view sensitive user information...

4.6CVSS5.1AI score0.00161EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/05 6:33 p.m.1 views

EUVD-2023-47421

A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.5, iOS 16.6 and iPadOS 16.6, Safari 16.6. Processing maliciously crafted web content may lead to memory corruption...

8.8CVSS5.8AI score0.03901EPSS
Exploits1References4
NVD
NVD
added 2025/11/05 5:15 p.m.12 views

CVE-2025-20358

A vulnerability in the Contact Center Express CCX Editor application of Cisco Unified CCX could allow an unauthenticated, remote attacker to bypass authentication and obtain administrative permissions pertaining to script creation and execution. This vulnerability is due to improper authenticatio...

9.8CVSS0.00898EPSS
Exploits0References1
CVE
CVE
added 2025/11/05 4:31 p.m.17 views

CVE-2025-20374

Technical details about CVE-2025-20374 are not publicly provided in the connected documents. Please monitor for updates from Cisco and Red Hat advisories for affected products, impact scope, and remediation.

4.9CVSS6.6AI score0.00947EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder