Lucene search
K

365 matches found

nvd
nvd
added 2026/06/29 8:17 p.m.7 views

CVE-2026-43743

A race condition was addressed with improved state handling. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination...

4.7CVSS0.00096EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/06/29 7:42 p.m.8 views

CVE-2026-43743

A race condition was addressed with improved state handling. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination...

4.7CVSS5.7AI score0.00096EPSS
Exploits0References3
cve
cve
added 2026/06/29 7:42 p.m.27 views

CVE-2026-43743

CVE-2026-43743 is a race condition addressed by Apple in macOS Tahoe 26.5.2 and iOS/iPadOS 26.5.2. The issue affects the IOGPUFamily entry (Impact: a user-level app may cause an unexpected system termination) and is mitigated by the patched state handling. The CVE references confirm the fix in ma...

4.7CVSS5.7AI score0.00096EPSS
Exploits0References2Affected Software3
ptsecurity
ptsecurity
added 2026/06/29 12:0 a.m.12 views

PT-2026-53729

Name of the Vulnerable Software and Affected Versions iOS versions prior to 26.5.2 iPadOS versions prior to 26.5.2 macOS Tahoe versions prior to 26.5.2 Description A race condition, which occurs when the timing or sequence of events is not properly controlled, was identified. This issue allows an...

4.7CVSS6AI score0.00096EPSS
Exploits0References6
astralinux
astralinux
added 2026/06/24 3:11 p.m.9 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: net/rds: There is no shortcut for exiting from the RDSCONNERROR state. RDS connections have a state called “rdsconnpath::cpstate”. Connections transition between states, and this transition occurs under the condition...

7.5CVSS5.9AI score0.00523EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2026/06/22 12:0 a.m.2 views

Vulnerability of the Audio/Video component: The GMP browser components in Mozilla Firefox, Firefox ESR, and the email client Thunderbird allow a hacker to trigger a service failure.

Vulnerability of the Audio/Video component: The GMP browsers Mozilla Firefox and Firefox ESR, as well as the email client Thunderbird, are vulnerable due to insufficient checking of unusual or exceptional states. Exploitation of this vulnerability can allow a malicious actor to cause service...

7.8CVSS7.1AI score0.00463EPSS
Exploits0References18Affected Software6
euvd
euvd
added 2026/06/11 12:32 a.m.10 views

EUVD-2022-56002

A person with access to a Mac may be able to bypass Login Window. A consistency issue was addressed with improved state handling. This issue is fixed in macOS Monterey 12.4...

3.5CVSS5.4AI score0.00153EPSS
Exploits0References2
nvd
nvd
added 2026/06/10 10:16 p.m.9 views

CVE-2022-48575

A person with access to a Mac may be able to bypass Login Window. A consistency issue was addressed with improved state handling. This issue is fixed in macOS Monterey 12.4...

3.5CVSS0.00153EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/06/10 8:9 p.m.9 views

CVE-2022-48575

A person with access to a Mac may be able to bypass Login Window. A consistency issue was addressed with improved state handling. This issue is fixed in macOS Monterey 12.4...

5.4AI score0.00153EPSS
Exploits0References1
cvelist
cvelist
added 2026/06/10 8:9 p.m.31 views

CVE-2022-48575

A person with access to a Mac may be able to bypass Login Window. A consistency issue was addressed with improved state handling. This issue is fixed in macOS Monterey 12.4...

0.00153EPSS
Exploits0References1
redos
redos
added 2026/06/09 12:0 a.m.9 views

ROS-20260609-73-0024

Vulnerability of the Audio/Video component: Playback in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient checking of unusual or exceptional states. Exploitation of this vulnerability can allow a remote attacker to cause service failures...

7.5CVSS5.5AI score0.00687EPSS
Exploits0
redhatcve
redhatcve
added 2026/06/05 7:46 p.m.12 views

CVE-2026-28919

A consistency issue was addressed with improved state handling. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to gain root privileges...

7.8CVSS5.4AI score0.00149EPSS
Exploits0References1
redos
redos
added 2026/06/05 12:0 a.m.7 views

ROS-20260605-73-0061

Vulnerability of Audio/Video components: Mozilla Firefox, Firefox ESR, and Thunderbird’s email client use web codecs. This vulnerability is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.5CVSS5.5AI score0.00687EPSS
Exploits0
attackerkb
attackerkb
added 2026/05/22 3:18 p.m.7 views

CVE-2026-9047

Improper handling of factor key state in the multi-factor authentication management feature in Devolutions Server allows an attacker with knowledge of a user's password to bypass the user's multi-factor authentication after the user reconfigures their factors. This issue affects : Devolutions...

7.6CVSS5.8AI score0.00215EPSS
Exploits0References2Affected Software1
astralinux
astralinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in WebKit2GTK

A race condition has been addressed through improved state handling. This issue is fixed in Safari 26.2, iOS 18.7.3, and iPadOS 18.7.3; iOS 26.2 and iPadOS 26.2; macOS Tahoe 26.2; tvOS 26.2; visionOS 26.2; and watchOS 26.2. Processing maliciously crafted web content may lead to an unexpected...

3.1CVSS5.2AI score0.0044EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: can: isotp: split the transmission timer into two parts—transmission and timeout. The timer for the transmission of isotp PDUs previously had two functions: 1. sending two consecutive frames with a specified time interval. 2...

5.5CVSS6.3AI score0.00197EPSS
Exploits0References2
redhat
redhat
added 2026/05/20 5:30 a.m.15 views

webkitgtk: A website may be able to track users through Safari web extensions

A flaw was found in WebKitGTK. A malicious website can track users through web extensions due to improper state management...

5.3CVSS7.2AI score0.00222EPSS
Exploits0References5
bdu_fstec
bdu_fstec
added 2026/05/18 12:0 a.m.4 views

The vulnerability of the NSS component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird allows a hacker to gain unauthorized access to protected information.

The vulnerability of the NSS component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected informatio...

7.8CVSS5.8AI score0.00269EPSS
Exploits0References11Affected Software4
cnnvd
cnnvd
added 2026/05/12 12:0 a.m.9 views

Backdrop CMS Salesforce 跨站请求伪造漏洞

Backdrop CMS Salesforce is a data synchronization extension module developed by Backdrop CMS Inc. for integration with the Salesforce platform. Versions of Backdrop CMS Salesforce prior to 1.x-1.0.1 contained a cross-site request forgeing vulnerability. This vulnerability stemmed from improper us...

7.1CVSS5.7AI score0.00121EPSS
Exploits0References1
euvd
euvd
added 2026/05/11 9:31 p.m.11 views

EUVD-2026-29240

A consistency issue was addressed with improved state handling. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to gain root privileges...

5.8AI score0.00149EPSS
Exploits0References4
Rows per page
Query Builder