CVE CyberSecurity Database News (Page 11)

Nov 4, 2025 iOS Exploit

CVE-2025-43413 - How a Sandbox Loophole Let Apps Spy on Your Network (Patched in Apple’s 2024 OS Updates)

Apple announced CVE-2025-43413 in June 2024—an access vulnerability that made a lot of security folks raise their eyebrows. Believe it or not, a sandboxed

Nov 3, 2025 Windows Exploit

CVE-2025-11953 - Critical OS Command Injection in React Native Metro Development Server

A new critical vulnerability has been assigned as CVE-2025-11953 affecting applications developed with React Native that use the Metro Development Server. This vulnerability can lead

Oct 27, 2025 Exploit Java Apache

CVE-2025-55752 - Apache Tomcat Relative Path Traversal Vulnerability – Exploit, Impact, and Practical Guidance

A dangerous new security hole—CVE-2025-55752—has been discovered in Apache Tomcat, one of the world’s most popular Java application servers. This vulnerability opens

Oct 27, 2025

CVE-2025-61481 - How MikroTik RouterOS v7.14.2 and SwOS v2.18 Put Your Network at Risk with WebFig Over Cleartext HTTP

A new vulnerability has been found in MikroTik routers, tracked as CVE-2025-61481. This issue affects RouterOS versions 7.14.2 and SwOS versions 2.18.

Oct 22, 2025

CVE-2025-40778 - How BIND’s DNS Leniency Let Hackers Poison Your Cache

If you run your own DNS servers, you’ve probably heard of BIND. It’s the backbone of most DNS installations. Lately, a new vulnerability—