5 matches found
CVE-2025-64336
ClipBucket v5 is an open source video sharing platform. In versions 5.5.2-146 and below, the Manage Photos feature is vulnerable to stored Cross-site Scripting XSS. An authenticated regular user can upload a photo with a malicious Photo Title containing HTML/JavaScript code. While the payload doe...
CVE-2025-43200
This issue was addressed with improved checks. This issue is fixed in iOS 15.8.4 and iPadOS 15.8.4, iOS 16.7.11 and iPadOS 16.7.11, iOS 18.3.1 and iPadOS 18.3.1, iPadOS 17.7.5, macOS Sequoia 15.3.1, macOS Sonoma 14.7.4, macOS Ventura 13.7.4, visionOS 2.3.1, watchOS 11.3.1. A logic issue existed...
CVE-2025-43200
Apple CVE-2025-43200 is a logic issue in processing a maliciously crafted photo or video shared via an iCloud Link that affects iOS, iPadOS, macOS, watchOS, and visionOS. The issue has been fixed in a broad set of updates (watchOS 11.3.1; macOS Ventura 13.7.4; iOS 15.8.4, 16.7.11, 17.7.5, 18.3.1;...
About the security content of watchOS 11.3.1
About the security content of watchOS 11.3.1 This document describes the security content of watchOS 11.3.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...
About the security content of macOS Sequoia 15.3.1
About the security content of macOS Sequoia 15.3.1 This document describes the security content of macOS Sequoia 15.3.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or...