Lucene search
K

118 matches found

RedhatCVE
RedhatCVE
added 2025/04/03 12:9 a.m.6 views

CVE-2025-24202

A logging issue was addressed with improved data redaction. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to access sensitive user data...

5.5CVSS5.7AI score0.00249EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/03 12:6 a.m.11 views

CVE-2025-24208

A flaw was found in WebKitGTK. Loading a malicious iframe can cause a cross-site scripting attack due to permissions issues. Mitigation Do not process or load untrusted web content with WebKitGTK. In Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server,...

6.1CVSS6.3AI score0.00534EPSS
Exploits0References4
Packet Storm News
Packet Storm News
added 2025/04/03 12:0 a.m.3 views

Apple Security Advisory 03-31-2025-3

Apple Security Advisory 03-31-2025-3 - iOS 18.4 and iPadOS 18.4 addresses buffer overflow, bypass, cross site scripting, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities...

9.8CVSS6.7AI score0.0197EPSS
Exploits4
RedhatCVE
RedhatCVE
added 2025/04/02 11:54 p.m.14 views

CVE-2025-24193

This issue was addressed with improved authentication. This issue is fixed in iOS 18.4 and iPadOS 18.4. An attacker with a USB-C connection to an unlocked device may be able to programmatically access photos...

2.4CVSS5.9AI score0.00465EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/02 11:37 p.m.9 views

CVE-2025-30434

The issue was addressed with improved input sanitization. This issue is fixed in iOS 18.4 and iPadOS 18.4. Processing a maliciously crafted file may lead to a cross site scripting attack...

5CVSS5.5AI score0.00252EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/02 11:29 p.m.11 views

CVE-2025-30432

A logic issue was addressed with improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, watchOS 11.4. A malicious app may be able to attempt passcode entries on a locked device and thereby caus...

6.4CVSS5.8AI score0.00782EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/02 11:29 p.m.12 views

CVE-2025-30463

The issue was addressed with improved restriction of data container access. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to access sensitive user data...

5.5CVSS5.7AI score0.00257EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/02 11:27 p.m.7 views

CVE-2025-30428

This issue was addressed through improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6. Photos in the Hidden Photos Album may be viewed without authentication...

5.4CVSS6.3AI score0.00328EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/02 11:16 p.m.13 views

CVE-2025-24173

This issue was addressed with additional entitlement checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, watchOS 11.4. An app may be able to break out of its sandbox...

7.8CVSS5.8AI score0.0031EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/02 11:11 p.m.15 views

CVE-2025-24216

A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling. Mitigation Do not process or load untrusted web content with WebKitGTK. In Red Hat Enterprise Linux 7, the following packages require WebKitGTK4:...

8.8CVSS6.3AI score0.00747EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/04/02 11:10 p.m.10 views

CVE-2025-24180

The issue was addressed with improved input validation. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, visionOS 2.4, watchOS 11.4. A malicious website may be able to claim WebAuthn credentials from another website that shares a registrable suffix...

8.1CVSS5.8AI score0.00961EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/02 11:6 p.m.18 views

CVE-2025-31192

The issue was addressed with improved checks. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. A website may be able to access sensor information without user consent...

6.7CVSS5.6AI score0.00547EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/02 10:59 p.m.16 views

CVE-2025-31184

This issue was addressed with improved permissions checking. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, visionOS 2.4. An app may gain unauthorized access to Local Network...

7.8CVSS5.9AI score0.00246EPSS
Exploits0References1
NVD
NVD
added 2025/03/31 11:15 p.m.12 views

CVE-2025-31191

This issue was addressed through improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, watchOS 11.4. An app may be able to access sensitive user data...

5.5CVSS0.00458EPSS
Exploits0References13
NVD
NVD
added 2025/03/31 11:15 p.m.26 views

CVE-2025-31192

The issue was addressed with improved checks. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. A website may be able to access sensor information without user consent...

6.7CVSS0.00547EPSS
Exploits0References6
OSV
OSV
added 2025/03/31 11:15 p.m.4 views

CVE-2025-30471

A validation issue was addressed with improved logic. This issue is fixed in visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. A remote user may be able to cause a denial-of-service...

7.5CVSS5.8AI score0.01386EPSS
Exploits0References15
NVD
NVD
added 2025/03/31 11:15 p.m.11 views

CVE-2025-30469

This issue was addressed through improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4. A person with physical access to an iOS device may be able to access photos from the lock screen...

2.4CVSS0.00254EPSS
Exploits0References2
NVD
NVD
added 2025/03/31 11:15 p.m.20 views

CVE-2025-31184

This issue was addressed with improved permissions checking. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, visionOS 2.4. An app may gain unauthorized access to Local Network...

7.8CVSS0.00246EPSS
Exploits0References8
NVD
NVD
added 2025/03/31 11:15 p.m.23 views

CVE-2025-30463

The issue was addressed with improved restriction of data container access. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to access sensitive user data...

5.5CVSS0.00257EPSS
Exploits0References4
NVD
NVD
added 2025/03/31 11:15 p.m.6 views

CVE-2025-30454

A path handling issue was addressed with improved validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5, tvOS 18.4, watchOS 11.4. A malicious app may be able to access private information...

5.5CVSS0.00285EPSS
Exploits0References10
Rows per page
Query Builder