137 matches found
CVE-2025-31200
A memory corruption issue was addressed with improved bounds checking. This issue is fixed in tvOS 18.4.1, visionOS 2.4.1, iOS iOS 18.4.1 and iPadOS 18.4.1, macOS Sequoia 15.4.1. Processing an audio stream in a maliciously crafted media file may result in code execution. Apple is aware of a repor...
CVE-2025-31201
CVE-2025-31201 is an Apple vulnerability that enables an attacker with arbitrary read/write capability to bypass Pointer Authentication. The issue is tied to the RPAC path and is fixed in iOS/iPadOS 18.4.1, tvOS 18.4.1, visionOS 2.4.1, and macOS Sequoia 15.4.1. Public records note high severity (...
Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for March 2024.
Summary In addition to OS level package updates, multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation 21.0.3-IF031 and 23.0.2-IF003. Vulnerability Details CVEID:CVE-2023-44270 DESCRIPTION: PostCSS could allow a remote attacker to bypass security restrictions,...
PT-2025-15859 · Juniper Networks · Junos Evolved +1
Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 21.2R3-S9 Junos OS versions from 21.4 before 21.4R3-S10 Junos OS versions from 22.2 before 22.2R3-S6 Junos OS versions from 22.4 before 22.4R3-S6 Junos OS versions from 23.2 before 23.2R2-S3 Junos OS versions from...
Critical Photon OS Security Update - PHSA-2025-4.0-0777
Updates of 'apache-tomcat9' packages of Photon OS have been released...
CVE-2025-24203
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, tvOS 18.4, visionOS 2.4, watchOS 11.4. An app may be able to modify protected parts of the file system...
CVE-2025-24198
This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An attacker with physical access may be able to use Siri to access sensitive user data...
Critical Photon OS Security Update - PHSA-2025-4.0-0765
Updates of 'rubygem-activesupport', 'gettext', 'libxml2' packages of Photon OS have been released...
CVE-2024-28127
Improper input validation in UEFI firmware for some IntelR Processors may allow a privileged user to potentially enable escalation of privilege via local access...
Important Photon OS Security Update - PHSA-2025-4.0-0753
Updates of 'linux' packages of Photon OS have been released...
Photon OS 5.0: Apache PHSA-2025-5.0-0445
An update of the apache package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0445. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
CVE-2025-24124
The issue was addressed with improved checks. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.4, macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, tvOS 18.3, visionOS 2.3, watchOS 11.3. Parsing a file may lead to an unexpected app termination...
Photon OS 5.0: Grpc PHSA-2025-5.0-0456
An update of the grpc package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0456. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Critical Photon OS Security Update - PHSA-2025-4.0-0729
Updates of 'bcc', 'bpftrace', 'expat', 'apache-tomcat9' packages of Photon OS have been released...
CVE-2024-54486
The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.3, watchOS 11.2, visionOS 2.2, tvOS 18.2, macOS Sequoia 15.2, iOS 18.2 and iPadOS 18.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. Processing a maliciously crafted font may result in the disclosure of process memory...
Photon OS 4.0: Docker PHSA-2024-4.0-0710
An update of the docker package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-4.0-0710. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
CVE-2024-40777
CVE-2024-40777 describes an out-of-bounds access issue that Apple fixed by improving bounds checking. The vulnerability is addressed in multiple Apple platforms: iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, and macOS Sonoma 14.6. Technical detail in the description indicates t...
CVE-2024-40795
CVE-2024-40795 affects Apple platforms where an app may be able to read sensitive location information. The issue was addressed with improved data protection and is fixed in watchOS 10.6, macOS Sonoma 14.6, iOS 17.6, iPadOS 17.6, and tvOS 17.6. The NVD entry shows a low 3.3 CVSS due to local acce...
CVE-2024-27802
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7, tvOS 17.5, visionOS 1.2. Processing a maliciously crafted file may lead to unexpected...
CVE-2024-27801
CVE-2024-27801 is an Apple vulnerability reported across multiple Apple OSes and components. It enables local privilege escalation and is stated as fixed in tvOS 17.5, visionOS 1.2, iOS 17.5, iPadOS 17.5, watchOS 10.5, and macOS Sonoma 14.5. Connected Apple advisories note affected components inc...