Lucene search
K

2148 matches found

RedhatCVE
RedhatCVE
added 2025/09/17 12:49 a.m.7 views

CVE-2025-57176

On Ceragon Networks / Siklu Communication EtherHaul and MultiHaul Series microwave antennas before 2026-03-10, the rfpiped service on TCP port 555 allows unauthenticated file uploads to any writable location on the device. File upload packets use weak encryption metadata only with file contents...

6.5CVSS7.3AI score0.00417EPSS
Exploits6References1
Positive Technologies
Positive Technologies
added 2025/09/17 12:0 a.m.4 views

PT-2025-38226

Name of the Vulnerable Software and Affected Versions CISA Thorium versions prior to 1.1.2 Description CISA Thorium does not adequately validate the paths of downloaded files via download ephemeral and download children. A remote, authenticated attacker could access arbitrary files subject to fil...

6.5CVSS6.1AI score0.00461EPSS
Exploits0References9
CNNVD
CNNVD
added 2025/09/17 12:0 a.m.5 views

CISA Thorium 安全漏洞

CISA Thorium is a highly scalable distributed malware analysis and data generation framework for the U.S. Cybersecurity and Infrastructure Security Administration CISA government division. A security vulnerability exists in CISA Thorium versions prior to 1.1.2 that stems from insufficient...

6.5CVSS6.5AI score0.00461EPSS
Exploits0References4
ICS
ICS
added 2025/09/16 12:0 a.m.9 views

CISA Thorium multiple vulnerabilities

RISK EVALUATION CISA Thorium is a framework used for malware analysis. Multiple vulnerabilities were reported in Thorium. Impacts include denial of service, authenticated arbitrary file read, and failure to expire previously issued user tokens. 2. RECOMMENDED PRACTICES These issues were...

6.5CVSS7.3AI score0.00461EPSS
Exploits0References1
OSV
OSV
added 2025/09/15 11:15 p.m.5 views

CVE-2025-43314

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sonoma 14.8, macOS Sequoia 15.7. An app may be able to access sensitive user data...

5.5CVSS5.7AI score0.00233EPSS
Exploits0References5
NVD
NVD
added 2025/09/15 11:15 p.m.5 views

CVE-2025-43314

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to access sensitive user data...

5.5CVSS0.00233EPSS
Exploits0References6
OSV
OSV
added 2025/09/15 11:15 p.m.3 views

CVE-2025-43298

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sonoma 14.8, macOS Sequoia 15.7. An app may be able to gain root privileges...

7.8CVSS5.7AI score0.00225EPSS
Exploits0References5
NVD
NVD
added 2025/09/15 11:15 p.m.2 views

CVE-2025-43190

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in iOS 26 and iPadOS 26, macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26, visionOS 26, watchOS 26. An app may be able to access sensitive user data...

5.5CVSS0.00253EPSS
Exploits0References11
OSV
OSV
added 2025/09/15 11:15 p.m.4 views

CVE-2025-43190

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in watchOS 26, macOS Sonoma 14.8, iOS 26 and iPadOS 26, visionOS 26, macOS Sequoia 15.7. An app may be able to access sensitive user data...

5.5CVSS5.7AI score0.00253EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2025/09/15 10:35 p.m.1 views

CVE-2025-43298

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sonoma 14.8, macOS Sequoia 15.7. An app may be able to gain root privileges...

5.8AI score0.00225EPSS
Exploits0References2
CVE
CVE
added 2025/09/15 10:35 p.m.26 views

CVE-2025-43298

The CVE-2025-43298 issue is a parsing problem in how macOS handles directory paths. Affected: macOS Sonoma 14.8 and macOS Sequoia 15.7. Impact: an app may gain root privileges due to improved path validation fixes. Remediation: apply the macOS updates (Sonoma 14.8, Sequoia 15.7). Exploitation sta...

7.8CVSS5.8AI score0.00225EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2025/09/15 10:35 p.m.7 views

CVE-2025-43298

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to gain root privileges...

0.00225EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/09/15 10:35 p.m.2 views

CVE-2025-43190

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sonoma 14.8, macOS Sequoia 15.7, visionOS 26, watchOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. An app may be able to access sensitive user data...

5.3AI score0.00253EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/09/15 10:35 p.m.6 views

CVE-2025-43190

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in iOS 26 and iPadOS 26, macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26, visionOS 26, watchOS 26. An app may be able to access sensitive user data...

0.00253EPSS
Exploits0References6
CVE
CVE
added 2025/09/15 10:35 p.m.20 views

CVE-2025-43190

CVE-2025-43190 describes a parsing issue in how directory paths are handled, addressed by improved path validation. The fixed products and versions listed in public records include watchOS 26, macOS Sonoma 14.8, iOS 26, iPadOS 26, visionOS 26, and macOS Sequoia 15.7. The vulnerability could enabl...

5.5CVSS5.8AI score0.00253EPSS
Exploits0References11Affected Software5
Vulnrichment
Vulnrichment
added 2025/09/15 10:35 p.m.1 views

CVE-2025-43314

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to access sensitive user data...

5.7AI score0.00233EPSS
Exploits0References3
CVE
CVE
added 2025/09/15 10:35 p.m.16 views

CVE-2025-43314

The CVE-2025-43314 issue is a parsing/validation flaw in handling directory paths that could allow an app to access sensitive user data. Public details confirm fixes are in macOS Sonoma 14.8 and macOS Sequoia 15.7 (with related references listing StorageKit path validation improvements). The root...

5.5CVSS5.8AI score0.00233EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2025/09/15 10:35 p.m.7 views

CVE-2025-43314

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to access sensitive user data...

0.00233EPSS
Exploits0References3
OSV
OSV
added 2025/09/15 8:0 p.m.7 views

GHSA-99PG-HQVX-R4GF Flowise has an Arbitrary File Read

Summary An arbitrary file read vulnerability in the chatId parameter supplied to both the /api/v1/get-upload-file and /api/v1/openai-assistants-file/download endpoints allows unauthenticated users to read unintended files on the local filesystem. In the default Flowise configuration this allows...

9.1CVSS6.9AI score
Exploits0References2
NVD
NVD
added 2025/09/15 5:15 p.m.8 views

CVE-2025-57176

On Ceragon Networks / Siklu Communication EtherHaul and MultiHaul Series microwave antennas before 2026-03-10, the rfpiped service on TCP port 555 allows unauthenticated file uploads to any writable location on the device. File upload packets use weak encryption metadata only with file contents...

6.5CVSS0.00417EPSS
Exploits6References1
Rows per page
Query Builder