5.5

CVSS3.1

CVE-2025-46288 -

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2, watchOS 26.2. An app may be able to access sensitive payment tokens.

πŸ“… Published: Dec. 17, 2025, 8:46 p.m. πŸ”„ Last Modified: April 2, 2026, 7:21 p.m.

3.7

CVSS3.1

CVE-2025-55254 - HCL BigFix Remote Control is vulnerable to a Path-relative stylesheet import (PRSSI)

Improper management of Path-relative stylesheet import in HCL BigFix Remote Control Lite Web Portal (versions 10.1.0.0326 and lower) may allow to execute malicious code in certain web pages.

πŸ“… Published: Dec. 17, 2025, 8:46 p.m. πŸ”„ Last Modified: Jan. 6, 2026, 7:56 p.m.

5.5

CVSS3.1

CVE-2025-46292 -

This issue was addressed with additional entitlement checks. This issue is fixed in iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2. An app may be able to access user-sensitive data.

πŸ“… Published: Dec. 17, 2025, 8:46 p.m. πŸ”„ Last Modified: April 2, 2026, 7:21 p.m.

9.8

CVSS3.1

CVE-2025-43428 -

A configuration issue was addressed with additional restrictions. This issue is fixed in iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Photos in the Hidden Photos Album may be viewed without authentication.

πŸ“… Published: Dec. 17, 2025, 8:46 p.m. πŸ”„ Last Modified: April 2, 2026, 7:20 p.m.

5.5

CVSS3.1

CVE-2025-46283 -

A logic issue was addressed with improved validation. This issue is fixed in macOS Sonoma 14.8.4, macOS Tahoe 26.2. An app may be able to access sensitive user data.

πŸ“… Published: Dec. 17, 2025, 8:46 p.m. πŸ”„ Last Modified: April 2, 2026, 7:21 p.m.

5.5

CVSS3.1

CVE-2025-46282 -

The issue was addressed with additional permissions checks. This issue is fixed in Safari 26.2, macOS Tahoe 26.2. An app may be able to access sensitive user data.

πŸ“… Published: Dec. 17, 2025, 8:46 p.m. πŸ”„ Last Modified: April 2, 2026, 7:21 p.m.

5.5

CVSS3.1

CVE-2025-46277 -

A logging issue was addressed with improved data redaction. This issue is fixed in iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, watchOS 26.2. An app may be able to access a user’s Safari history.

πŸ“… Published: Dec. 17, 2025, 8:46 p.m. πŸ”„ Last Modified: April 2, 2026, 7:21 p.m.

4.7

CVSS3.1

CVE-2025-59849 - HCL BigFix Remote Control is vulnerable to an insecure CSP configuration

Improper management of Content Security Policy in HCL BigFix Remote Control Lite Web Portal (versions 10.1.0.0326 and lower) may allow the execution of malicious code in web pages.

πŸ“… Published: Dec. 17, 2025, 8:28 p.m. πŸ”„ Last Modified: Jan. 6, 2026, 7:54 p.m.

8.5

CVSS4.0

CVE-2025-53000 - nbconvert has an uncontrolled search path that leads to unauthorized code execution on Windows

The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions of nbconvert up to and including 7.16.6 on Windows have a vulnerability in which converting a notebook containing SVG output to a PDF results in unauthorized code execution. Spec…

πŸ“… Published: Dec. 17, 2025, 8:27 p.m. πŸ”„ Last Modified: Feb. 18, 2026, 7:21 p.m.

1.7

CVSS4.0

CVE-2025-66647 - RIOT OS has buffer overflow in gnrc_ipv6_ext_frag_reass

RIOT is an open-source microcontroller operating system, designed to match the requirements of Internet of Things (IoT) devices and other embedded devices. A vulnerability was discovered in the IPv6 fragmentation reassembly implementation of RIOT OS v2025.07. When copying the contents of the first …

πŸ“… Published: Dec. 17, 2025, 8:21 p.m. πŸ”„ Last Modified: Jan. 22, 2026, 4:30 p.m.
Total resulsts: 342358
Page 1869 of 34,236
Β« previous page Β» next page
Filters