Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: apple Clear
ID Title
CVE-2025-43441 Buffer Overflow in apple (CVE-2025-43441)
vulnerability in apple (CVE-2025-43441). Risk of unauthorized operations or information disclosure.
CVE-2025-43407 This issue was addressed with improved entitlements. This issue is fixed in visionOS 26.1, macOS...
This issue was addressed with improved entitlements. This issue is fixed in visionOS 26.1, macOS...
CVE-2022-48503 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2022-48503)
vulnerability in Apple multiple-products (CVE-2022-48503). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-43368 Use-After-Free in apple (CVE-2025-43368)
vulnerability in apple (CVE-2025-43368). Risk of unauthorized operations or information disclosure.
CVE-2025-43357 Vulnerability in apple (CVE-2025-43357)
vulnerability in apple (CVE-2025-43357). Risk of unauthorized operations or information disclosure.
CVE-2025-43300 KEV [KEV] Out-of-Bounds Write in Apple ios (CVE-2025-43300)
out-of-bounds write in Apple ios (CVE-2025-43300). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-43213 Buffer Overflow in c (CVE-2025-43213)
vulnerability in c (CVE-2025-43213). Risk of unauthorized operations or information disclosure.
CVE-2025-43214 Buffer Overflow in c (CVE-2025-43214)
vulnerability in c (CVE-2025-43214). Risk of unauthorized operations or information disclosure.
CVE-2025-6965 Vulnerability in SQLitePCLRaw.lib.e_sqlite3 (CVE-2025-6965)
vulnerability in SQLitePCLRaw.lib.e_sqlite3 (CVE-2025-6965). Data can be tampered with by attackers.
CVE-2025-43200 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2025-43200)
vulnerability in Apple multiple-products (CVE-2025-43200). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-31223 Buffer Overflow in apple (CVE-2025-31223)
vulnerability in apple (CVE-2025-31223). Successful exploitation can lead to full system takeover.
CVE-2025-31257 Buffer Overflow in apple (CVE-2025-31257)
vulnerability in apple (CVE-2025-31257). Risk of unauthorized operations or information disclosure.
CVE-2025-31201 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2025-31201)
vulnerability in Apple multiple-products (CVE-2025-31201). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-31200 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2025-31200)
vulnerability in Apple multiple-products (CVE-2025-31200). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-24170 A logic issue was addressed with improved file handling. This issue is fixed in macOS Ventura 13...
A logic issue was addressed with improved file handling. This issue is fixed in macOS Ventura 13...
CVE-2025-24201 KEV [KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2025-24201)
out-of-bounds write in Apple multiple-products (CVE-2025-24201). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-24200 KEV [KEV] Authorization Flaw in Apple ios-and-ipados (CVE-2025-24200)
vulnerability in Apple ios-and-ipados (CVE-2025-24200). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-24085 KEV [KEV] Use-After-Free in Apple multiple-products (CVE-2025-24085)
vulnerability in Apple multiple-products (CVE-2025-24085). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-54508 Out-of-Bounds Read in apple (CVE-2024-54508)
vulnerability in apple (CVE-2024-54508). Risk of unauthorized operations or information disclosure.
CVE-2024-44309 KEV [KEV] Cross-Site Scripting (XSS) in Apple multiple-products (CVE-2024-44309)
cross-site scripting in Apple multiple-products (CVE-2024-44309). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-44308 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2024-44308)
vulnerability in Apple multiple-products (CVE-2024-44308). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-6387 Vulnerability in sonicwall (CVE-2024-6387)
vulnerability in sonicwall (CVE-2024-6387). Successful exploitation can lead to full system takeover.
CVE-2024-23225 KEV [KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2024-23225)
out-of-bounds write in Apple multiple-products (CVE-2024-23225). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-23296 KEV [KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2024-23296)
out-of-bounds write in Apple multiple-products (CVE-2024-23296). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-48618 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2022-48618)
vulnerability in Apple multiple-products (CVE-2022-48618). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-23222 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2024-23222)
vulnerability in Apple multiple-products (CVE-2024-23222). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-41990 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2023-41990)
vulnerability in Apple multiple-products (CVE-2023-41990). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-48795 Vulnerability in russh (CVE-2023-48795)
vulnerability in russh (CVE-2023-48795). Data can be tampered with by attackers. Mitigation: upgrade to `0.40.2` or later.
CVE-2023-42917 KEV [KEV] Out-of-Bounds Write in Apple java (CVE-2023-42917)
out-of-bounds write in Apple java (CVE-2023-42917). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `1.8.0, 8.0.411` or later.
CVE-2023-42916 KEV [KEV] Out-of-Bounds Read in Apple multiple-products (CVE-2023-42916)
vulnerability in Apple multiple-products (CVE-2023-42916). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-44487 KEV [KEV] Vulnerability in Ietf golang.org/x/net (CVE-2023-44487)
vulnerability in Ietf golang.org/x/net (CVE-2023-44487). Risk of unauthorized operations or information disclosure. Exploitable via ``Channel``. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `0.17.0` or later.
CVE-2023-42824 KEV [KEV] Vulnerability in Apple ios-and-ipados (CVE-2023-42824)
vulnerability in Apple ios-and-ipados (CVE-2023-42824). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-41991 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2023-41991)
vulnerability in Apple multiple-products (CVE-2023-41991). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-41992 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2023-41992)
vulnerability in Apple multiple-products (CVE-2023-41992). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-41993 KEV [KEV] Vulnerability in Apple java (CVE-2023-41993)
vulnerability in Apple java (CVE-2023-41993). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `1.8.0, 8.0.411` or later.
CVE-2023-41064 KEV [KEV] Vulnerability in Apple ios (CVE-2023-41064)
vulnerability in Apple ios (CVE-2023-41064). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-41061 KEV [KEV] Vulnerability in Apple ios (CVE-2023-41061)
vulnerability in Apple ios (CVE-2023-41061). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-4781 Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873.
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873.
CVE-2023-4733 Use After Free in GitHub repository vim/vim prior to 9.0.1840.
Use After Free in GitHub repository vim/vim prior to 9.0.1840.
CVE-2023-4750 Use After Free in GitHub repository vim/vim prior to 9.0.1857.
Use After Free in GitHub repository vim/vim prior to 9.0.1857.
CVE-2023-4736 Untrusted Search Path in GitHub repository vim/vim prior to 9.0.1833.
Untrusted Search Path in GitHub repository vim/vim prior to 9.0.1833.
CVE-2023-4735 Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1847.
Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1847.
CVE-2023-4734 Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1846.
Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1846.
CVE-2023-38606 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2023-38606)
vulnerability in Apple multiple-products (CVE-2023-38606). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-37450 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2023-37450)
vulnerability in Apple multiple-products (CVE-2023-37450). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-32434 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2023-32434)
vulnerability in Apple multiple-products (CVE-2023-32434). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-32435 KEV [KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2023-32435)
out-of-bounds write in Apple multiple-products (CVE-2023-32435). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-32439 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2023-32439)
vulnerability in Apple multiple-products (CVE-2023-32439). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-34752 SQL Injection in sqli (CVE-2023-34752)
SQL injection in sqli (CVE-2023-34752). Successful exploitation can lead to full system takeover.
CVE-2023-32409 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2023-32409)
vulnerability in Apple multiple-products (CVE-2023-32409). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →