64 matches found
CVE-2025-46315
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.1. An app may be able to access protected user data...
AlmaLinux 10 : kernel (ALSA-2026:19569)
The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:19569 advisory. kernel: net: afcan: do not leave a dangling sk pointer in cancreate CVE-2024-56603 kernel: net/sched: Make cakeenqueue return NETXMITCN when past...
CVE-2026-48111
7-Zip versions 9.21–26.00 contain an off-by-one out-of-bounds read in the UEFI DEPEX/PEI DEPEX handling path (ParseDepedencyExpression in UefiHandler.cpp). The code validates an attacker-controlled opcode with > instead of >= against a 10-entry kExpressionCommands array, allowing an opcode ...
EUVD-2026-34837
7-Zip is a file archiver with a high compression ratio. Versions 9.34 through 26.00 contain a heap memory disclosure via SquashFS fragment offset integer overflow on 32-bit builds. 32-bit integer overflow in the SquashFS ReadBlock function allows an attacker-controlled node.Offset value to bypass...
CVE-2026-11029
Insufficient validation of untrusted input in Drag and Drop in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...
PT-2026-40828
Name of the Vulnerable Software and Affected Versions OPNsense versions prior to 26.1.7 Description A logic flaw in the lockout handler allows an unauthenticated attacker to continuously reset the authentication failure counter for their IP address. By interjecting a crafted username containing a...
PT-2026-46971
Name of the Vulnerable Software and Affected Versions 7-Zip versions 9.11 through 26.00 Description A heap out-of-bounds read of up to 3 bytes exists in the UDF disc image handler's File Identifier Descriptor parser. In the CFileId::Parse function, an alignment-padding loop reads data to reach a...
CVE-2025-15579
CVE-2025-15579 describes an insecure deserialization vulnerability in OpenText Directory Services (versions 10.5–26.1) that enables Object Injection due to deserialization of untrusted data. The underlying issue is the deserialization process, which can lead to remote code execution, denial of se...
[SECURITY] Fedora 42 Update: rust-onefetch-2.26.1-7.fc42
Command-line Git information tool...
CVE-2026-23566
CVE-2026-23566 affects TeamViewer DEX Client (formerly 1E Client) Content Distribution Service (NomadBranch.exe) on Windows, with vulnerability in the UDP network handler that allows an adjacent-network attacker to inject, tamper with, or forge entries in the Nomad Branch.log. Suspected impact is...
PT-2026-5257
Name of the Vulnerable Software and Affected Versions TeamViewer DEX Client former 1E Client versions prior to 26.1 Description A flaw exists due to insufficient validation of user-supplied data within the Content Distribution Service NomadBranch.exe of the TeamViewer DEX Client. This allows a...
MiracleLinux 8 : emacs-26.1-9.el8 (AXSA:2023-5965:05)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5965:05 advisory. emacs: ctags local command execution vulnerability CVE-2022-45939 Tenable has extracted the preceding description block directly from the MiracleLinux securi...
CVE-2025-43508
A logging issue was addressed with improved data redaction. This issue is fixed in macOS Tahoe 26.1. An app may be able to access sensitive user data...
CVE-2025-43437
An information disclosure issue was addressed with improved privacy controls. This issue is fixed in iOS 26.1 and iPadOS 26.1. An app may be able to fingerprint the user...
CVE-2025-43466
An injection issue was addressed with improved validation. This issue is fixed in macOS Tahoe 26.1. An app may be able to access sensitive user data...
EUVD-2025-203135
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.1. A standard user may be able to view files made from a disk image belonging to an administrator...
CVE-2025-43437
CVE-2025-43437 describes an information disclosure where an app may fingerprint a user, due to privacy control weaknesses. The vulnerability is fixed in iOS 26.1 and iPadOS 26.1. Affected: Apple iOS and iPadOS prior to 26.1. Remediation: upgrade to iOS 26.1 / iPadOS 26.1 or later. Public details ...
CVE-2025-43437
An information disclosure issue was addressed with improved privacy controls. This issue is fixed in iOS 26.1 and iPadOS 26.1. An app may be able to fingerprint the user...
PT-2025-50992
Name of the Vulnerable Software and Affected Versions iOS versions prior to 26.1 iPadOS versions prior to 26.1 Description An issue exists where an application may be able to fingerprint a user, leading to an information disclosure. This impacts user privacy. Recommendations Update to iOS version...
Apple macOS 安全漏洞
Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A security vulnerability exists in Apple macOS Tahoe versions prior to 26.1, which stems from an insufficient sandbox restriction that could cause an application to break throug...