Search
Search Results (318638 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-43438 | 1 Apple | 8 Ios, Ipad Os, Ipados and 5 more | 2025-11-15 | 4.3 Medium |
| A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2. Processing maliciously crafted web content may lead to an unexpected Safari crash. | ||||
| CVE-2025-43380 | 1 Apple | 3 Macos, Macos Sequoia, Macos Sonoma | 2025-11-15 | 5.5 Medium |
| An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Sonoma 14.8.2, macOS Sequoia 15.7.2. Parsing a file may lead to an unexpected app termination. | ||||
| CVE-2025-43384 | 1 Apple | 6 Ios, Ipados, Iphone Os and 3 more | 2025-11-15 | 4.3 Medium |
| An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory. | ||||
| CVE-2025-43457 | 1 Apple | 6 Ios, Ipados, Iphone Os and 3 more | 2025-11-15 | 6.5 Medium |
| A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 26.1, iOS 26.1 and iPadOS 26.1, Safari 26.1, visionOS 26.1. Processing maliciously crafted web content may lead to an unexpected Safari crash. | ||||
| CVE-2025-43432 | 1 Apple | 10 Ios, Ipad Os, Ipados and 7 more | 2025-11-15 | 4.3 Medium |
| A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.1, visionOS 26.1, watchOS 26.1, iOS 26.1 and iPadOS 26.1, tvOS 26.1. Processing maliciously crafted web content may lead to an unexpected process crash. | ||||
| CVE-2025-36250 | 1 Ibm | 2 Aix, Vios | 2025-11-15 | 10 Critical |
| IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server (formerly known as NIM master) service (nimesis) could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in CVE-2024-56346. | ||||
| CVE-2025-36096 | 1 Ibm | 2 Aix, Vios | 2025-11-15 | 9 Critical |
| IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is susceptible to unauthorized access by an attacker using man in the middle techniques. | ||||
| CVE-2025-36251 | 1 Ibm | 2 Aix, Vios | 2025-11-15 | 9.6 Critical |
| IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 nimsh service SSL/TLS implementations could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in CVE-2024-56347. | ||||
| CVE-2025-3416 | 1 Redhat | 5 Directory Server, Enterprise Linux, Openshift and 2 more | 2025-11-15 | 3.7 Low |
| A flaw was found in OpenSSL's handling of the properties argument in certain functions. This vulnerability can allow use-after-free exploitation, which may result in undefined behavior or incorrect property parsing, leading to OpenSSL treating the input as an empty string. | ||||
| CVE-2025-65072 | 2025-11-15 | N/A | ||
| Not used | ||||
| CVE-2025-65071 | 2025-11-15 | N/A | ||
| Not used | ||||
| CVE-2025-65070 | 2025-11-15 | N/A | ||
| Not used | ||||
| CVE-2025-65069 | 2025-11-15 | N/A | ||
| Not used | ||||
| CVE-2025-65068 | 2025-11-15 | N/A | ||
| Not used | ||||
| CVE-2025-65067 | 2025-11-15 | N/A | ||
| Not used | ||||
| CVE-2025-65066 | 2025-11-15 | N/A | ||
| Not used | ||||
| CVE-2025-65065 | 2025-11-15 | N/A | ||
| Not used | ||||
| CVE-2025-65064 | 2025-11-15 | N/A | ||
| Not used | ||||
| CVE-2023-6596 | 1 Redhat | 1 Openshift | 2025-11-15 | 7.5 High |
| An incomplete fix was shipped for the Rapid Reset (CVE-2023-44487/CVE-2023-39325) vulnerability for an OpenShift Containers. | ||||
| CVE-2025-11188 | 1 Synchroweb | 1 Kiwire | 2025-11-14 | 7.3 High |
| The Kiwire Captive Portal contains a blind SQL injection in the nas-id parameter, allowing for SQL commands to be issued and to compromise the corresponding database. | ||||