Lucene search
+L

555 matches found

Cvelist
Cvelist
added 2025/12/12 8:57 p.m.25 views

CVE-2025-43522

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Sequoia 15.7.3, macOS Tahoe 26.2. An app may be able to access user-sensitive data...

0.00113EPSS
Exploits0References2
CVE
CVE
added 2025/12/12 8:14 p.m.18 views

CVE-2024-58316

CVE-2024-58316 affects Online Shopping System Advanced 1.0. A SQL injection vulnerability exists in the payment_success.php script, exploitable via the unfiltered, user-controllable cm parameter, enabling attackers to craft SQL queries and potentially retrieve sensitive database information by ma...

8.7CVSS7.2AI score0.00494EPSS
Exploits1References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/12/12 12:0 a.m.9 views

macOS 15.x < 15.7.3 Multiple Vulnerabilities (125887)

The remote host is running a version of macOS / Mac OS X that is 15.x prior to 15.7.3. It is, therefore, affected by multiple vulnerabilities: - A vulnerability has been identified in the libarchive library. This flaw can be triggered when file streams are piped into bsdtar, potentially allowing...

9.8CVSS7.1AI score0.17301EPSS
Exploits2References27
NVD
NVD
added 2025/11/25 6:15 p.m.6 views

CVE-2025-64062

The Primakon Pi Portal 1.0.18 /api/V2/ppusers?email endpoint is used for user data filtering but lacks proper server-side validation against the authenticated session. By manipulating the email parameter to an arbitrary value e.g., [email protected], an attacker can assume the session and gain...

8.8CVSS0.00261EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/11/05 2:11 p.m.11 views

CVE-2025-41337

A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameter 'web' in '/backend/api/buscarSSOParametros.php'...

8.7CVSS6.7AI score0.00293EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/05 5:40 a.m.14 views

CVE-2025-21073

Insecure default configuration in USB connection mode prior to SMR Nov-2025 Release 1 allows privileged physical attackers to access user data. User interaction is required for triggering this vulnerability...

6.8CVSS0.00184EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/05 2:14 a.m.1 views

CVE-2025-43405

A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1. An app may be able to access user-sensitive data...

7.5CVSS6.5AI score0.00539EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/05 2:14 a.m.7 views

CVE-2025-43411

This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1. An app may be able to access user-sensitive data...

5.5CVSS6.5AI score0.00191EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/05 2:14 a.m.4 views

CVE-2025-43334

This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1. An app may be able to access user-sensitive data...

5.5CVSS6.5AI score0.00194EPSS
Exploits0References1
NVD
NVD
added 2025/11/04 2:15 p.m.5 views

CVE-2025-41342

A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameter 'iduser' in '/backend/api/buscarUsuarioId.php'...

8.7CVSS0.0027EPSS
Exploits0References1
NVD
NVD
added 2025/11/04 1:15 p.m.6 views

CVE-2025-41114

A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameters 'iddenuncia' and 'iduser' in '/backend/api/buscarDocumentosByIdDenunciaUsuario.php'...

8.7CVSS0.0027EPSS
Exploits0References1
OSV
OSV
added 2025/11/04 2:15 a.m.4 views

CVE-2025-43411

This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sequoia 15.7.2, macOS Tahoe 26.1, macOS Sonoma 14.8.2. An app may be able to access user-sensitive data...

5.5CVSS6.5AI score0.00191EPSS
Exploits0References3
NVD
NVD
added 2025/11/04 2:15 a.m.2 views

CVE-2025-43335

The issue was addressed by adding additional logic. This issue is fixed in macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1. An app may be able to access user-sensitive data...

5.5CVSS0.00194EPSS
Exploits0References3
OSV
OSV
added 2025/11/04 2:15 a.m.0 views

CVE-2025-43335

The issue was addressed by adding additional logic. This issue is fixed in macOS Sequoia 15.7.2, macOS Tahoe 26.1, macOS Sonoma 14.8.2. An app may be able to access user-sensitive data...

5.5CVSS5.7AI score0.00194EPSS
Exploits0References3
OSV
OSV
added 2025/11/04 2:15 a.m.1 views

CVE-2025-43322

A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.7.2, macOS Tahoe 26.1, macOS Sonoma 14.8.2. An app may be able to access user-sensitive data...

5.5CVSS5.8AI score
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/04 1:17 a.m.1 views

CVE-2025-43379

This issue was addressed with improved validation of symlinks. This issue is fixed in tvOS 26.1, watchOS 26.1, macOS Tahoe 26.1, iOS 26.1 and iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, visionOS 26.1. An app may be able to access protected user data...

5.5AI score0.00195EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/11/04 1:17 a.m.2 views

CVE-2025-43322

A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.7.2, macOS Tahoe 26.1, macOS Sonoma 14.8.2. An app may be able to access user-sensitive data...

5.6AI score0.00194EPSS
Exploits0References3
CVE
CVE
added 2025/11/04 1:17 a.m.18 views

CVE-2025-43334

CVE-2025-43334 affects macOS Sonoma 14.8.2, macOS Sequoia 15.7.2, and macOS Tahoe 26.1. The issue stems from insufficient entitlement checks that could allow an app to access user‑sensitive data. Apple has addressed the vulnerability with fixes in the named OS updates, mitigating the local attack...

5.5CVSS6.5AI score0.00194EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/04 1:16 a.m.1 views

CVE-2025-43335

The issue was addressed by adding additional logic. This issue is fixed in macOS Sequoia 15.7.2, macOS Tahoe 26.1, macOS Sonoma 14.8.2. An app may be able to access user-sensitive data...

5.8AI score0.00194EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/04 1:16 a.m.10 views

CVE-2025-43335

The issue was addressed by adding additional logic. This issue is fixed in macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1. An app may be able to access user-sensitive data...

0.00194EPSS
Exploits0References3
Rows per page
Query Builder