CVE-2025-31216

The issue was addressed with improved checks. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7. An attacker with physical access to a device may be able to override managed Wi-Fi profiles...

CVE-2025-31216

The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5. An attacker with physical access to a device may be able to override managed Wi-Fi profiles...

CVE-2025-43374

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, visionOS 2.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, macOS Sequoia 15.5, watchOS 11.5. An attacker in physical proximity may be able to cause an out-of-bounds rea...

CVE-2025-31216

The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5. An attacker with physical access to a device may be able to override managed Wi-Fi profiles...

CVE-2025-31216

CVE-2025-31216 affects Apple iOS/iPadOS: an attacker with physical access could override managed Wi‑Fi profiles. Apple fixed this in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5 with “improved checks.” The vulnerability is documented across NVD/Red Hat/ENISA entries, tying to Wi‑Fi profile handling. R...

CVE-2025-31216

The issue was addressed with improved checks. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7. An attacker with physical access to a device may be able to override managed Wi-Fi profiles...

Google Chrome < 123.0.6312.58 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 123.0.6312.58. It is, therefore, affected by multiple vulnerabilities as referenced in the 202403stable-channel-update-for-desktop19 advisory. - Use after free in Canvas in Google Chrome prior to 123.0.6312.58 allowed a...

EUVD-2025-197765

Improper certificate validation vulnerability exists in 'デジラアプリ' App for iOS prior to ver.80.10.00. If this vulnerability is exploited, a man-in-the-middle attack may allow an attacker to eavesdrop on and/or tamper with an encrypted communication...

CVE-2025-60022

Improper certificate validation vulnerability exists in 'デジラアプリ' App for iOS prior to ver.80.10.00. If this vulnerability is exploited, a man-in-the-middle attack may allow an attacker to eavesdrop on and/or tamper with an encrypted communication...

PT-2025-47122

Name of the Vulnerable Software and Affected Versions デジラアプリ versions prior to 80.10.00 Description An improper certificate validation issue exists in the 'デジラアプリ' App for iOS. Successful exploitation of this issue could allow an attacker to perform a man-in-the-middle attack, potentially enablin...

CVE-2024-13983

Inappropriate implementation in Lens in Google Chrome on iOS prior to 136.0.7103.59 allowed a remote attacker to perform UI spoofing via a crafted QR code. Chromium security severity: Low...

CVE-2024-13983

Inappropriate implementation in Lens in Google Chrome on iOS prior to 136.0.7103.59 allowed a remote attacker to perform UI spoofing via a crafted QR code. Chromium security severity: Low...

CVE-2024-9126

Use after free in Internals in Google Chrome on iOS prior to 127.0.6533.88 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a series of curated UI gestures. Chromium security severity: Medium...

CVE-2024-9126

Use after free in Internals in Google Chrome on iOS prior to 127.0.6533.88 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a series of curated UI gestures. Chromium security severity: Medium...

CVE-2024-9126

Use after free in Internals in Google Chrome on iOS prior to 127.0.6533.88 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a series of curated UI gestures. Chromium security severity: Medium...

CVE-2024-9126

Use after free in Internals in Google Chrome on iOS prior to 127.0.6533.88 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a series of curated UI gestures. Chromium security severity: Medium...

CVE-2024-9126

CVE-2024-9126 affects Google Chrome on iOS (Internals component). A use-after-free in Internals could allow heap corruption when a user is guided to perform specific UI gestures. The issue is mitigated by updating Chrome to version 127.6533.88 or later (per Chrome release notes). Exploitation is ...

CVE-2024-13983

CVE-2024-13983 concerns Google Chrome’s Lens feature on iOS before 136.0.7103.59, where an imperfect validation of QR codes allows a remote attacker to perform a UI masquerade via a crafted QR. The underlying issue is in Lens’ handling of QR input, enabling an interface spoofing attack. Affected ...

CVE-2024-13983

Inappropriate implementation in Lens in Google Chrome on iOS prior to 136.0.7103.59 allowed a remote attacker to perform UI spoofing via a crafted QR code. Chromium security severity: Low...

CVE-2024-13983

Inappropriate implementation in Lens in Google Chrome on iOS prior to 136.0.7103.59 allowed a remote attacker to perform UI spoofing via a crafted QR code. Chromium security severity: Low...