CVE-2025-30427 - Use-After-Free Vulnerability in Safari Causing Unexpected Crashes Resolved with Improved Memory Management
A new security vulnerability, identified as CVE-2025-30427, has been discovered that affects Safari browser. This vulnerability is a result of a use-after-free issue, which essentially
CVE-2025-28886 - Cross-Site Request Forgery (CSRF) Vulnerability in xjb REST API TO MiniProgram Affecting the Security of Users' Personal Data and Allowing Unauthorized Actions Across Websites
Abstract
Security analysts have found a Cross-Site Request Forgery (CSRF) vulnerability, CVE-2025-28886, in the xjb REST API TO MiniProgram. This issue affects versions n/a
CVE-2025-24201 - Out-of-Bounds Write Issue Addressed in visionOS, iOS, iPadOS, macOS, and Safari to Prevent Unauthorized Actions
The CVE-2025-24201 vulnerability, an out-of-bounds write issue, has recently been addressed by Apple with the release of improved security checks in visionOS 2.3.2,
CVE-2025-0108: Authentication Bypass Vulnerability in Palo Alto Networks PAN-OS Software
Palo Alto Networks has identified an authentication bypass vulnerability (CVE-2025-0108) in their popular PAN-OS software. This vulnerability, if exploited, enables an unauthenticated attacker with network
CVE-2024-54658: Understanding the Memory Handling Issue Affecting Web Content Processing and Solutions in iOS 17.4, iPadOS 17.4, Safari 17.4, tvOS 17.4, watchOS 10.4, visionOS 1.1, macOS Sonoma 14.4
The CVE-2024-54658 vulnerability was discovered in several Apple products, specifically iOS 17.4 and iPadOS 17.4, Safari 17.4, tvOS 17.4, watchOS 10.
Episode
00:00:00
00:00:00