Lucene search
K

118 matches found

CNNVD
CNNVD
added 2025/12/12 12:0 a.m.3 views

Apple macOS 安全漏洞

Apple macOS Tahoe is a desktop operating system released by Apple on June 10, 2025, using the LiquidGlass design language and integrating several AI and cross-device features. Apple macOS Tahoe suffers from a memory mishandling vulnerability that stems from a flaw in the system's memory handling...

7.8CVSS6.2AI score0.00191EPSS
Exploits0References1
OSV
OSV
added 2025/12/09 7:12 p.m.5 views

MGASA-2025-0325 Updated webkit2 packages fix security vulnerabilities

A website may be able to exfiltrate sensitive system information. Description: The issue was addressed through improved state checks - CVE-2025-13947. Processing maliciously crafted web content may lead to an unexpected process crash. Description: Multiple issues were addressed by disabling array...

8.8CVSS6.6AI score0.00564EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2025/12/08 12:0 a.m.5 views

Important: webkit2gtk3 security update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkit: WebKitGTK / WPE WebKit: Out-of-bounds read and integer underflow vulnerability leading to DoS CVE-2025-13502 webkitgtk: Processing maliciously crafted web content may lead to memory...

8.8CVSS6.4AI score0.03901EPSS
Exploits1References38
OSV
OSV
added 2025/11/14 4:41 p.m.3 views

MGASA-2025-0291 Updated webkit2 packages fix security vulnerabilities

CVE-2024-27838 A maliciously crafted webpage may be able to fingerprint the user. Description: The issue was addressed by adding additional logic. CVE-2024-27851 Processing maliciously crafted web content may lead to arbitrary code execution. Description: The issue was addressed with improved...

9.8CVSS7.5AI score0.01344EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/11/12 7:47 a.m.3 views

CVE-2025-9524

The VAPIX API port.cgi did not have sufficient input validation, which may result in process crashes and impact usability. This vulnerability can only be exploited after authenticating with a viewer- operator- or administrator-privileged service account...

4.3CVSS6.9AI score0.00225EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/12 7:47 a.m.3 views

CVE-2025-8998

It was possible to upload files with a specific name to a temporary directory, which may result in process crashes and impact usability. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account...

3.1CVSS7AI score0.00201EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/11 9:30 a.m.6 views

EUVD-2025-74035

The VAPIX API port.cgi did not have sufficient input validation, which may result in process crashes and impact usability. This vulnerability can only be exploited after authenticating with a viewer- operator- or administrator-privileged service account...

4.3CVSS6.4AI score0.00225EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/11 7:28 a.m.5 views

CVE-2025-8998

It was possible to upload files with a specific name to a temporary directory, which may result in process crashes and impact usability. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account...

3.1CVSS0.00201EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/11 7:28 a.m.3 views

CVE-2025-8998

It was possible to upload files with a specific name to a temporary directory, which may result in process crashes and impact usability. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account...

3.1CVSS6.6AI score0.00201EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/11 7:25 a.m.4 views

CVE-2025-9524

The VAPIX API port.cgi did not have sufficient input validation, which may result in process crashes and impact usability. This vulnerability can only be exploited after authenticating with a viewer- operator- or administrator-privileged service account...

4.3CVSS6.5AI score0.00225EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/11 7:25 a.m.9 views

CVE-2025-9524

The VAPIX API port.cgi did not have sufficient input validation, which may result in process crashes and impact usability. This vulnerability can only be exploited after authenticating with a viewer- operator- or administrator-privileged service account...

4.3CVSS0.00225EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/11 12:0 a.m.5 views

AXIS OS 安全漏洞

AXIS OS is an edge device operating system from Axis Sweden. AXIS OS has a security vulnerability that stems from insufficient input validation, which could lead to process crashes and affect availability...

4.3CVSS6.7AI score0.00225EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/04 1:17 a.m.1 views

CVE-2025-43427

This issue was addressed through improved state management. This issue is fixed in Safari 26.1, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1. Processing maliciously crafted web content may lead to an unexpected process crash...

6.5AI score0.00483EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/11/04 12:0 a.m.5 views

Apple多款产品 安全漏洞

Apple Safari and others are products of Apple Inc. Apple Safari is a web browser that is the default browser that comes with the Mac OS X and iOS operating systems. apple iOS is a set of operating systems developed for mobile devices. apple iPadOS is a set of operating systems for the iPad tablet...

4.3CVSS6.1AI score0.00621EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/10/21 10:11 a.m.3 views

Security update for webkit2gtk3

This update for webkit2gtk3 fixes the following issues: CVE-2025-43343: improved memory handling in web content processing to prevent process crash bsc1251975 CVE-2025-43272: improved memory handling to prevent unexpected process crash bsc1250439 CVE-2025-43342: correctness issue was addressed wi...

8.8CVSS6.7AI score0.00952EPSS
Exploits0References20
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-24431

Malware in sbrugna...

5.3CVSS5.5AI score0.01244EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-20863

Malware in sbrugna...

7.1CVSS6.9AI score0.00593EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-29351

Malware in sbrugna...

7.8CVSS7.6AI score0.00326EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-24788

Malware in sbrugna...

8.6CVSS8.6AI score0.01371EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-3570

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Call to the scryptenc function in HHVM can lead to heap corruption by using specifically crafted parameters N, r and p. This happens if the parameters are...

9.8CVSS8.3AI score0.01679EPSS
Exploits0References2
Rows per page
Query Builder