CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

This issue was addressed with improved URL validation. This issue is fixed in Safari 26, iOS 26 and iPadOS 26. Processing maliciously crafted web content may lead to unexpected URL redirection...

5.9AI score0.00484EPSS

Exploits0References2

Positive Technologies•added 2025/09/15 12:0 a.m.•3 views

PT-2025-37781

Name of the Vulnerable Software and Affected Versions: Safari versions prior to 26 iOS versions prior to 26 iPadOS versions prior to 26 Description: Processing maliciously crafted web content may lead to unexpected URL redirection due to improved URL validation. Recommendations: Update Safari to...

5.5CVSS6.5AI score0.00484EPSS

Exploits0References8

NVD•added 2025/07/30 12:15 a.m.•3 views

CVE-2025-31229

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.6 and iPadOS 18.6. Passcode may be read aloud by VoiceOver...

9.1CVSS0.00675EPSS

Exploits0References2

Japan Vulnerability Notes•added 2025/07/29 12:0 a.m.•4 views

JVN#59585716: "SwitchBot" App vulnerable to insertion of sensitive information into log file

"SwitchBot" App provided by SwitchBot contains the following vulnerability. Insertion of sensitive information into log file CWE-532 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N Base Score 5.9 CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Base Score 5.1 CVE-2025-53649 Impact...

5.9CVSS4.9AI score0.0014EPSS

Exploits0

Positive Technologies•added 2025/07/29 12:0 a.m.•5 views

PT-2025-31310

Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.6 iPadOS versions prior to 18.6 Description Visiting a malicious website may lead to address bar spoofing. The issue was addressed with improved UI. Recommendations Update to iOS version 18.6 or later. Update to iPadOS...

10CVSS7.6AI score0.09524EPSS

Exploits4References147

CVE•added 2025/07/01 12:0 a.m.•15 views

CVE-2025-45083

CVE-2025-45083 affects the Ullu mobile app on Android (v2.9.929) and iOS (v2.8.0). The root cause is an incorrect access control that enables bypassing the parental PIN feature through unspecified vectors. The vulnerability could allow attackers with local access to defeat parental controls, as i...

6.1CVSS7.2AI score0.00124EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by