CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Redos•added 2025/12/17 12:0 a.m.•7 views

ROS-20251217-7306

A vulnerability in the Omnibox component of the Google Chrome browser is related to the implementation of an incorrect control flow. Exploitation of the vulnerability could allow an attacker acting remotely to disclose protected information...

4.2CVSS6.4AI score0.00158EPSS

Redos•added 2025/12/16 12:0 a.m.•6 views

ROS-20251216-7360

A vulnerability in the V8 JavaScript script handler of Google Chrome and Microsoft Edge browsers is related to errors in the implementation of security checks for standard elements. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...

4.3CVSS6.6AI score0.0025EPSS

Redos•added 2025/12/16 12:0 a.m.•5 views

ROS-20251216-7365

A vulnerability in the Ozone component of Google Chrome and Microsoft Edge browsers is related to memory usage after it has been freed. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality, integrity and availability of protected information...

8.8CVSS6.4AI score0.00224EPSS

Redos•added 2025/12/16 12:0 a.m.•3 views

ROS-20251216-7336

A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to an access control flaw. Exploitation of the vulnerability may allow an attacker to gain unauthorized access to protected information...

6CVSS6.8AI score0.00184EPSS

Redos•added 2025/12/15 12:0 a.m.•7 views

ROS-20251215-7314

A vulnerability in the Yelp help system is related to the inclusion of functions from an invalid controlled scope when processing documents using the ghelp schema. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information and execute...

7.4CVSS7.9AI score0.10259EPSS

Exploits1

RedhatCVE•added 2025/12/13 10:0 p.m.•4 views

CVE-2025-46289

A logic issue was addressed with improved file handling. This issue is fixed in macOS Sequoia 15.7.3, macOS Sonoma 14.8.3, macOS Tahoe 26.2. An app may be able to access protected user data...

5.5CVSS5.8AI score0.00193EPSS

OSV•added 2025/12/12 9:15 p.m.•1 views

CVE-2025-46289

A logic issue was addressed with improved file handling. This issue is fixed in macOS Tahoe 26.2, macOS Sequoia 15.7.3, macOS Sonoma 14.8.3. An app may be able to access protected user data...

5.5CVSS5.8AI score0.00193EPSS

NVD•added 2025/12/12 9:15 p.m.•4 views

CVE-2025-46289

A logic issue was addressed with improved file handling. This issue is fixed in macOS Sequoia 15.7.3, macOS Sonoma 14.8.3, macOS Tahoe 26.2. An app may be able to access protected user data...

5.5CVSS0.00193EPSS

OSV•added 2025/12/12 9:15 p.m.•3 views

CVE-2025-43416

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Tahoe 26.2, macOS Sequoia 15.7.3, macOS Sonoma 14.8.3. An app may be able to access protected user data...

5.5CVSS5.7AI score0.00368EPSS

OSV•added 2025/12/12 9:15 p.m.•2 views

CVE-2025-43351

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.1. An app may be able to access protected user data...

5.5CVSS5.8AI score0.00147EPSS

NVD•added 2025/12/12 9:15 p.m.•4 views

CVE-2025-43381

This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Tahoe 26.1. A malicious app may be able to delete protected user data...

5.5CVSS0.00174EPSS

CVE•added 2025/12/12 8:56 p.m.•8 views

CVE-2025-43416

CVE-2025-43416 is a logic-issue vulnerability fixed in macOS Sonoma 14.8.3, macOS Sequoia 15.7.3, and macOS Tahoe 26.2. The issue could allow an app to access protected user data due to insufficient restrictions. Affected components are addressed by these macOS security updates, which implement s...

9.8CVSS5.8AI score0.00368EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2025/12/12 8:56 p.m.•4 views

CVE-2025-43416

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Tahoe 26.2, macOS Sequoia 15.7.3, macOS Sonoma 14.8.3. An app may be able to access protected user data...

5.4AI score0.00368EPSS

CVE•added 2025/12/12 8:56 p.m.•9 views

CVE-2025-43461

CVE-2025-43461 affects macOS Tahoe; the issue is a Symbolic Link Validation Insufficiency fixed in macOS Tahoe 26.1. The vulnerability could allow a locally authenticated app to access protected user data due to insufficient symlink validation. A patch is available with macOS Tahoe 26.1. If not u...

5.5CVSS5.7AI score0.00175EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/12/12 8:56 p.m.•3 views

CVE-2025-43461

This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Tahoe 26.1. An app may be able to access protected user data...

5.7AI score0.00175EPSS

EUVD•added 2025/12/12 8:56 p.m.•5 views

EUVD-2025-203158

A logic issue was addressed with improved file handling. This issue is fixed in macOS Sonoma 14.8.3, macOS Sequoia 15.7.3. An app may be able to access protected user data...

5.6AI score0.00193EPSS

Vulnrichment•added 2025/12/12 8:56 p.m.•2 views

CVE-2025-46289

A logic issue was addressed with improved file handling. This issue is fixed in macOS Tahoe 26.2, macOS Sequoia 15.7.3, macOS Sonoma 14.8.3. An app may be able to access protected user data...

5.7AI score0.00193EPSS