About the security content of iOS 18.7.2 and iPadOS 18.7.2

About the security content of iOS 18.7.2 and iPadOS 18.7.2 This document describes the security content of iOS 18.7.2 and iPadOS 18.7.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...

PT-2025-44859

Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.7.2 iPadOS versions prior to 18.7.2 Description A logging issue existed that allowed an attacker with physical access to an unlocked device paired with a Mac to view sensitive user information in system logging. The...

EUVD-2017-3888

Malware in sbrugna...

EUVD-2021-19561

Malware in sbrugna...

EUVD-2025-22038

Malicious code in bioql PyPI...

CVE-2025-54319

An issue was discovered in Westermo WeOS 5 5.24 through 5.24.4. A threat actor potentially can gain unauthorized access to sensitive information via system logging information syslog verbose logging that includes credentials...

CVE-2025-54319

An issue was discovered in Westermo WeOS 5 5.24 through 5.24.4. A threat actor potentially can gain unauthorized access to sensitive information via system logging information syslog verbose logging that includes credentials...

CVE-2025-30424

A logging issue was addressed with improved data redaction. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. Deleting a conversation in Messages may expose user contact information in system logging...

CVE-2024-13416

CVE-2024-13416 affects the 2N OS platform. The issue arises when an authorized user uses the API to enable logging, which can disclose valid authentication tokens in the system log due to unfiltered token exposure. Impact is rated medium (CVSS 3.1: 4.3) with network access and low attack complexi...

CVE-2025-24146

This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3. Deleting a conversation in Messages may expose user contact information in system logging...

CVE-2025-24146

CVE-2025-24146 affects macOS Messages where deleting a conversation may expose user contact information in system logs. The issue is tied to insufficient redaction of sensitive data and is fixed in macOS Ventura 13.7.3, macOS Sequoia 15.3, and macOS Sonoma 14.7.3. CVSSv3.1 metrics in the initial ...

CVE-2025-24146

This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3. Deleting a conversation in Messages may expose user contact information in system logging...

CVE-2024-21987

SnapCenter versions 4.8 prior to 5.0 are susceptible to a vulnerability which could allow an authenticated SnapCenter Server user to modify system logging configuration settings...

CVE-2024-21987 Improper Authorization Vulnerability in SnapCenter

SnapCenter versions 4.8 prior to 5.0 are susceptible to a vulnerability which could allow an authenticated SnapCenter Server user to modify system logging configuration settings...

UBUNTU-CVE-2023-6779

An off-by-one heap-based buffer overflow was found in the vsysloginternal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when these functions are called with a message bigger than INTMAX bytes, leading to an incorrect calculation of t...

PT-2023-22422 · Totolink · Totolink X18

Name of the Vulnerable Software and Affected Versions: TOTOLINK X18 version 9.1.0cu.2024 B20220329 Description: The issue is related to multiple command injection vulnerabilities. These vulnerabilities can be exploited via the rtLogEnabled and rtLogServer parameters in the setSyslogCfg function...

SUSE CVE-2019-17040

contrib/pmdb2diag/pmdb2diag.c in Rsyslog v8.1908.0 allows out-of-bounds access because the level length is mishandled...

Gym Management System 跨站请求伪造漏洞

Gym Management System is a gym management system. The system is developed in C and sql server and features customer and supplier management, product management, sales management, gym membership management, fitness assessment, system logging, database backup and restore. A security vulnerability...

Gym Management System 安全漏洞

Gym Management System is a gym management system. The system is developed in C and sql server and features customer and vendor management, product management, sales management, gym membership management, fitness assessment, system logging, database backup and restore. A security vulnerability...

rsyslog: Heap-based overflow in TCP syslog server

A flaw was found in rsyslog's reception TCP modules. This flaw allows an attacker to craft a malicious message leading to a heap-based buffer overflow. This issue allows the attacker to corrupt or access data stored in memory, leading to a denial of service in the rsyslog or possible remote code...