Lucene search
K

62 matches found

Vulnrichment
Vulnrichment
added 2025/01/27 9:46 p.m.6 views

CVE-2025-24131

The issue was addressed with improved memory handling. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. An attacker in a privileged position may be able to perform a denial-of-service...

5.3AI score0.01241EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/01/27 9:46 p.m.10 views

CVE-2025-24166

...

Exploits0
Cvelist
Cvelist
added 2025/01/27 9:46 p.m.29 views

CVE-2025-24141

An authentication issue was addressed with improved state management. This issue is fixed in iOS 18.3 and iPadOS 18.3. An attacker with physical access to an unlocked device may be able to access Photos while the app is locked...

0.00209EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/27 9:46 p.m.16 views

CVE-2025-24161

The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. Parsing a file may lead to an unexpected app termination...

6AI score0.00298EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/01/27 9:46 p.m.9 views

CVE-2025-24177

A null pointer dereference was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.3, iOS 18.3 and iPadOS 18.3. A remote attacker may be able to cause a denial-of-service...

6.7AI score0.00819EPSS
Exploits0References2
CVE
CVE
added 2025/01/27 9:46 p.m.86 views

CVE-2025-24177

CVE-2025-24177 is an Apple AirPlay vulnerability. The description notes a null pointer dereference that was addressed by improved input validation, with a fixed patch in macOS Sequoia 15.3 and iOS/iPadOS 18.3. The CVE entry indicates a possible remote denial-of-service if exploited. Connected App...

7.5CVSS7.1AI score0.00819EPSS
Exploits0References7Affected Software3
Vulnrichment
Vulnrichment
added 2025/01/27 9:46 p.m.16 views

CVE-2025-24160

The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. Parsing a file may lead to an unexpected app termination...

5.4AI score0.0137EPSS
Exploits0References7
CVE
CVE
added 2025/01/27 9:46 p.m.132 views

CVE-2025-24143

CVE-2025-24143 is a fingerprinting vulnerability involving WebKit-derived components. The core issue appears to be insufficient access restrictions to the local file system, allowing a malicious webpage to fingerprint the user. Apple patched this in macOS Sequoia 15.3, Safari 18.3, iOS 18.3, iPad...

6.5CVSS6.8AI score0.00798EPSS
Exploits0References8Affected Software4
Cvelist
Cvelist
added 2025/01/27 9:45 p.m.16 views

CVE-2025-24162

This issue was addressed through improved state management. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, tvOS 18.3, visionOS 2.3, watchOS 11.3. Processing maliciously crafted web content may lead to an unexpected process crash...

0.00949EPSS
Exploits0References6
CVE
CVE
added 2025/01/27 9:45 p.m.155 views

CVE-2025-24163

CVE-2025-24163 affects Apple platforms and has been fixed in multiple OS updates (iOS/iPadOS 18.3, macOS Sonoma 14.7.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3, iPadOS 17.7.4, visionOS 2.3). The issue is described as: Parsing a file may lead to an unexpected app termination in CoreAudio. Conn...

5.5CVSS7.3AI score0.00435EPSS
Exploits0References22Affected Software6
Debian CVE
Debian CVE
added 2025/01/27 9:45 p.m.6 views

CVE-2025-24162

This issue was addressed through improved state management. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, tvOS 18.3, visionOS 2.3, watchOS 11.3. Processing maliciously crafted web content may lead to an unexpected process crash...

6.5CVSS7.1AI score0.00949EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/01/27 9:45 p.m.5 views

CVE-2025-24158

The issue was addressed with improved memory handling. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, tvOS 18.3, visionOS 2.3, watchOS 11.3. Processing web content may lead to a denial-of-service...

6.5CVSS7.1AI score0.01327EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/01/27 9:45 p.m.10 views

CVE-2025-24124

The issue was addressed with improved checks. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.4, macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, tvOS 18.3, visionOS 2.3, watchOS 11.3. Parsing a file may lead to an unexpected app termination...

7.3AI score0.00313EPSS
Exploits0References8
CVE
CVE
added 2025/01/27 9:45 p.m.72 views

CVE-2025-24145

CVE-2025-24145 describes a privacy issue where an app may view a contact’s phone number in system logs. Affected products updated: macOS Sequoia 15.3, iOS 18.3, iPadOS 18.3. Root cause relates to private data redaction in log entries; remediation is to apply the updates listed (Sequoia 15.3, iOS ...

3.3CVSS7.1AI score0.00234EPSS
Exploits0References4Affected Software3
Cvelist
Cvelist
added 2025/01/27 9:45 p.m.28 views

CVE-2025-24104

This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.4. Restoring a maliciously crafted backup file may lead to modification of protected system files...

0.01497EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/27 9:45 p.m.11 views

CVE-2025-24128

The issue was addressed by adding additional logic. This issue is fixed in macOS Sequoia 15.3, Safari 18.3, iOS 18.3 and iPadOS 18.3. Visiting a malicious website may lead to address bar spoofing...

5.7AI score0.00555EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/01/27 9:45 p.m.15 views

CVE-2025-24129

A type confusion issue was addressed with improved checks. This issue is fixed in iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.3, visionOS 2.3. An attacker on the local network may cause an unexpected app termination...

0.01283EPSS
Exploits0References6
CVE
CVE
added 2025/01/27 9:45 p.m.74 views

CVE-2025-24129

CVE-2025-24129 is a type confusion vulnerability in Apple AirPlay that affects iOS 18.3/iPadOS 18.3, visionOS 2.3, macOS Sequoia 15.3, watchOS 11.3, and tvOS 18.3. Root cause: type confusion in AirPlay code leading to potential application termination. Impact: a remote attacker on the local netwo...

7.5CVSS7.2AI score0.01283EPSS
Exploits0References11Affected Software6
Positive Technologies
Positive Technologies
added 2025/01/27 12:0 a.m.4 views

PT-2025-5292 · Apple · Ipados +5

Name of the Vulnerable Software and Affected Versions: iPadOS versions prior to 17.7.4 visionOS versions prior to 2.3 iOS versions prior to 18.3 iPadOS versions prior to 18.3 macOS Sequoia versions prior to 15.3 watchOS versions prior to 11.3 Description: This issue is related to insufficient...

5.5CVSS8.7AI score0.00268EPSS
Exploits0References12
Apple
Apple
added 2025/01/27 12:0 a.m.30 views

About the security content of iOS 18.3 and iPadOS 18.3

About the security content of iOS 18.3 and iPadOS 18.3 This document describes the security content of iOS 18.3 and iPadOS 18.3. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches ...

9.8CVSS9.2AI score0.18668EPSS
Exploits5References1Affected Software2
Rows per page
Query Builder