PT-2025-44862

Name of the Vulnerable Software and Affected Versions iOS versions prior to 26.1 iPadOS versions prior to 26.1 Description A flaw exists due to insufficient data redaction in logging mechanisms. This could allow an application to access sensitive user data. Recommendations Update to iOS version...

PT-2025-44908

Name of the Vulnerable Software and Affected Versions watchOS versions prior to 26.1 iOS versions prior to 26.1 iPadOS versions prior to 26.1 visionOS versions prior to 26.1 Description An application could potentially access sensitive user data due to improper handling of user preferences...

PT-2025-44887

Name of the Vulnerable Software and Affected Versions watchOS versions prior to 26.1 iOS versions prior to 26.1 iPadOS versions prior to 26.1 visionOS versions prior to 26.1 Description A privacy issue existed where a malicious application could potentially capture screenshots of sensitive...

PT-2025-44888

Name of the Vulnerable Software and Affected Versions Apple Safari versions prior to 26.1 watchOS versions prior to 26.1 iOS versions prior to 26.1 iPadOS versions prior to 26.1 visionOS versions prior to 26.1 Description A use-after-free issue exists due to improved memory management. Processing...

PT-2025-44867

Name of the Vulnerable Software and Affected Versions Apple Safari versions prior to 26.1 visionOS versions prior to 26.1 watchOS versions prior to 26.1 iOS versions prior to 26.1 iPadOS versions prior to 26.1 tvOS versions prior to 26.1 Description A use-after-free issue exists due to improper...

PT-2025-44865

Name of the Vulnerable Software and Affected Versions Safari versions prior to 26.1 visionOS versions prior to 26.1 watchOS versions prior to 26.1 iOS versions prior to 26.1 iPadOS versions prior to 26.1 tvOS versions prior to 26.1 Description Processing maliciously crafted web content may lead t...

PT-2025-44874

Name of the Vulnerable Software and Affected Versions Safari versions prior to 26.1 visionOS versions prior to 26.1 watchOS versions prior to 26.1 iOS versions prior to 26.1 iPadOS versions prior to 26.1 tvOS versions prior to 26.1 Description Processing maliciously crafted web content may lead t...

PT-2025-44861

Name of the Vulnerable Software and Affected Versions Safari versions prior to 26.1 visionOS versions prior to 26.1 watchOS versions prior to 26.1 iOS versions prior to 26.1 iPadOS versions prior to 26.1 tvOS versions prior to 26.1 Description The issue involves improved memory handling. Processi...

PT-2025-44875

Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.7.2 iPadOS versions prior to 18.7.2 Description A flaw exists due to improper memory handling when processing specially designed web content. This can result in an application crash. Recommendations Update to iOS versi...

Mozilla Firefox for iOS Information Disclosure Vulnerability

Mozilla Firefox for iOS is a web browser designed for iOS devices by the US-based Mozilla Foundation. An information disclosure vulnerability exists in Mozilla Firefox for iOS, which is caused due to incorrect sharing of cookie storage for non-HTML temporary documents with normal browsing content...

Malicious Package

Overview ios-signing-common is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

CVE-2025-43280

The issue was resolved by not loading remote images. This issue is fixed in iOS 18.6 and iPadOS 18.6. Forwarding an email could display remote images in Mail in Lockdown Mode...

CVE-2025-43280

The issue was resolved by not loading remote images. This issue is fixed in iOS 18.6 and iPadOS 18.6. Forwarding an email could display remote images in Mail in Lockdown Mode...

Apple多款产品 安全漏洞

Apple iOS is an operating system developed for mobile devices. apple watchOS is an operating system for smartwatches. apple macOS is a specialized operating system for Mac computers. A security vulnerability exists in a number of Apple products that originates from a memory mismanagement issue...

Cisco IOS XE Software 安全漏洞

Cisco IOS XE Software is a network operating system from Cisco. A security vulnerability exists in Cisco IOS XE Software that originates from a buffer handling logic error in the HTTP decoder when parsing the MIME field of the HTTP header, which could lead to a buffer under-read attack or sensiti...

Cisco IOS XE Software SVI ACL Bypass (cisco-sa-cat9k-acl-L4K7VXgD)

A vulnerability in the access control list ACL programming of Cisco IOS XE Software for Cisco Catalyst 9500X and 9600X Series Switches could allow an unauthenticated, remote attacker to bypass a configured ACL on an affected device. Please see the included Cisco BIDs and Cisco Security Advisory f...

CVE-2025-5009 Information Disclosure in Gemini iOS App

In Gemini iOS, when a user shared a snippet of a conversation, it would share the entire conversation via a sharable public link that contained the entire conversation history and not just the snippet...

PT-2025-41274

Name of the Vulnerable Software and Affected Versions Gemini iOS affected versions not specified Description A flaw exists in Gemini iOS where sharing a conversation snippet inadvertently shares the entire conversation history through a publicly accessible link. This occurs because the sharing...

Malicious code in ios-signing-common (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2bfb96a60459a153a9a22586c87b5bf6e35ecf604760a4de43b056c3de5127f6 Any computer that has this package installed or running should be considered...

MAL-2025-48368 Malicious code in ios-signing-common (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2bfb96a60459a153a9a22586c87b5bf6e35ecf604760a4de43b056c3de5127f6 Any computer that has this package installed or running should be considered...