28053 matches found
QNAP Systems File Station 5 缓冲区错误漏洞
QNAP Systems File Station 5 is a file management system developed by QNAP Systems, a company based in Taiwan, China. Versions of QNAP Systems File Station 5 prior to 5.5.6.5068 had a buffer error vulnerability. This vulnerability stemmed from out-of-bounds read attacks, which could lead to the...
PT-2026-7751
Name of the Vulnerable Software and Affected Versions macOS Sequoia versions 15.7.4 macOS Tahoe version 26.3 macOS Sonoma versions 14.8.4 Description A privacy issue existed where an application could potentially access sensitive user data. The issue was resolved with improved checks...
PT-2026-7772
Name of the Vulnerable Software and Affected Versions iOS versions prior to 26.3 iPadOS versions prior to 26.3 Description An inconsistent user interface issue existed due to improved state management. An attacker with physical access to an iPhone could potentially take and view screenshots of...
Apple iOS和Apple iPadOS 安全漏洞
Apple iOS and Apple iPadOS are products of the American company Apple. Apple iOS is an operating system developed for mobile devices. Apple iPadOS is an operating system for iPad tablets. Versions of Apple iOS prior to 26.3 and Apple iPadOS prior to 26.3 contained security vulnerabilities. These...
PT-2026-27538
Name of the Vulnerable Software and Affected Versions macOS versions prior to 14.8.4 macOS versions prior to 26.3 Description An authorization issue existed due to improved state management. This could allow an application to access sensitive user data. Recommendations Update to macOS version...
PT-2026-27537
Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.7.7 iPadOS versions prior to 18.7.7 macOS Sequoia versions prior to 15.7.5 macOS Sonoma versions prior to 14.8.5 macOS Tahoe versions prior to 26.3 visionOS versions prior to 26.3 iOS versions 26.3 iPadOS versions 26.3...
PT-2026-7797
Name of the Vulnerable Software and Affected Versions iOS versions prior to 26.3 iPadOS versions prior to 26.3 Description A privacy issue existed where an attacker with physical access to a locked device could potentially view sensitive user information. The issue was resolved by removing the...
CVE-2024-26478
CVE-2024-26478 affects Statping-ng v0.91.0, where a flaw in the /api/users endpoint can lead to disclosure of sensitive information. Public sources consistently identify the issue as an authorization/privacy weakness tied to that endpoint; Red Hat, NVD, OSV, and third-party advisories reference t...
PT-2026-7779
A privacy issue was addressed by moving sensitive data to a protected location. This issue is fixed in macOS Tahoe 26.3. A malicious app may be able to access notifications from other iCloud devices...
PT-2026-27547
Name of the Vulnerable Software and Affected Versions iOS versions prior to 26.3 iPadOS versions prior to 26.3 macOS Sequoia versions 15.7.4 through 15.7.5 macOS Sonoma versions 14.8.4 through 14.8.5 macOS Tahoe versions prior to 26.4 Description An application may be able to access user-sensitiv...
PT-2026-7731
Name of the Vulnerable Software and Affected Versions macOS versions prior to 14.8.4 Description A flaw exists in path handling due to improved logic. This could allow an application to access user-sensitive data. Recommendations Update to macOS version 14.8.4...
statping-ng 安全漏洞
Statping-ng is an open-source server monitoring software developed by Statping-ng. Version 0.91.0 of Statping-ng contains a security vulnerability, which stems from improper handling of specially crafted requests for admin parameters, potentially leading to the exposure of sensitive information...
macOS 14.x < 14.8.4 Multiple Vulnerabilities (126350)
The remote host is running a version of macOS / Mac OS X that is 14.x prior to 14.8.4. It is, therefore, affected by multiple vulnerabilities: - A race condition was addressed with improved handling of symbolic links. This issue is fixed in macOS Tahoe 26.3, macOS Sonoma 14.8.4, iOS 18.7.5 and...
PT-2026-7744
Name of the Vulnerable Software and Affected Versions macOS versions prior to Tahoe 26.3 Description An application possessing root privileges may be capable of accessing private information due to insufficient redaction of sensitive data. Recommendations Update to macOS Tahoe 26.3...
CVE-2025-12699 ZOLL ePCR IOS Mobile Application Insertion of Sensitive Information into Externally-Accessible File or Directory
The ZOLL ePCR IOS application reflects unsanitized user input into a WebView. Attacker-controlled strings placed into PCR fields run number, incident, call sign, notes are interpreted as HTML/JS when the app prints or renders that content. In the proof of concept POC, injected scripts return loca...
CVE-2026-25231
FileRise is a self-hosted web file manager / WebDAV server. Versions prior to 3.3.0, the application contains an unauthenticated file read vulnerability due to the lack of access control on the /uploads directory. Files uploaded to this directory can be accessed directly by any user who knows or...
CVE-2026-23655
Cleartext storage of sensitive information in Azure Compute Gallery allows an authorized attacker to disclose information over a network...
CVE-2026-23655
Cleartext storage of sensitive information in Azure Compute Gallery allows an authorized attacker to disclose information over a network...
CVE-2026-21222
Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally...
CVE-2026-23655
Cleartext storage of sensitive information in Azure Compute Gallery allows an authorized attacker to disclose information over a network...