9.3
CVE-2025-1907 - Instantel Micromate Missing Authentication for Critical Function
Instantel Micromate lacks authentication on a configuration port which could allow an attacker to execute commands if connected.
6.9
CVE-2025-5332 - 1000 Projects Online Notice Board index.php sql injection
A vulnerability was found in 1000 Projects Online Notice Board 1.0 and classified as critical. This issue affects some unknown processing of the file /index.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to thβ¦
8.4
CVE-2025-5307 - Santesoft Sante DICOM Viewer Pro Out-of-bounds Read
Santesoft Sante DICOM Viewer Pro contains a memory corruption vulnerability. A local attacker could exploit this issue to potentially disclose information and to execute arbitrary code on affected installations of Sante DICOM Viewer Pro.
6.9
CVE-2025-5331 - PCMan FTP Server NLST Command buffer overflow
A vulnerability has been found in PCMan FTP Server 2.0.7 and classified as critical. This vulnerability affects unknown code of the component NLST Command Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may bβ¦
9.8
CVE-2025-30466 - Same Origin Policy Bypass via State Management Flaw
This issue was addressed through improved state management. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, visionOS 2.4. A website may be able to bypass Same Origin Policy.
5.5
CVE-2025-31261 - Sandbox Permission Bypass Allowing Access to Protected User Data
A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to access protected user data.
5.5
CVE-2025-31231 - macOS Sequoia Location Permissions Issue Exposing Sensitive Data
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4. An app may be able to read sensitive location information.
5.5
CVE-2025-31199 - Logging Vulnerability Exposing Sensitive User Data on Apple Operating Systems
A logging issue was addressed with improved data redaction. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.8.2, visionOS 2.4. An app may be able to access sensitive user data.
4.6
CVE-2025-31264 - Authentication Bypass on Locked macOS Devices Allows Viewing Sensitive User Information
An authentication issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An attacker with physical access to a locked device may be able to view sensitive user information.
5.5
CVE-2025-31198 - macOS Symlink Path Validation Vulnerability
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. A path handling issue was addressed with improved validation.