CVE CyberSecurity Database News (Page 12)

May 13, 2025 RCE Exploit Java

CVE-2025-42999 - SAP NetWeaver Visual Composer Metadata Uploader – Untrusted Deserialization Vulnerability Explained

CVE-2025-42999 is a newly discovered vulnerability in SAP NetWeaver Visual Composer (VC). This vulnerability lets a user with upload permissions—sometimes even an internal or

May 12, 2025 API Mac Exploit

CVE-2025-31258 - How a macOS Sandbox Escape Was Fixed in Sequoia 15.5

In early 2025, Apple patched a serious security vulnerability impacting the macOS operating system. Tracked as CVE-2025-31258, this bug could have allowed a malicious app

May 12, 2025 Mac Safari iOS

CVE-2025-31257 - Critical Safari Crash Bug Explained, Code Samples, Exploitation, and Fixes

CVE-2025-31257 is a recently disclosed security vulnerability affecting Apple's web browser, Safari, on multiple Apple platforms—iPhone, iPad, Mac, Apple TV, Apple Watch,

May 12, 2025 Windows Exploit

CVE-2025-22247 - Breaking Down VMware Tools’ Insecure File Handling Flaw (Exclusive Deep Dive & Exploit Details)

Earlier in 2025, a serious vulnerability labeled CVE-2025-22247 hit the security news cycle. It impacts the widely used VMware Tools, a staple for managing and

May 9, 2025

CVE-2025-4432 - How a Flaw in Rust’s ‘ring’ Exposes QUIC to Denial of Service (with Example Code and Exploit Details)

--- Rust is known for its safety and reliability, especially in critical low-level libraries like ring. Unfortunately, even the best tools can have flaws. Recently,