CVE-2025-31209

MEDIUM Year: 2025
CVSS v3 Score
6.3
Medium
Weakness Type
CWE-125
View all →

Vulnerability Description

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. Parsing a file may lead to disclosure of user information.

Related Vulnerabilities

CVE-2016-4652

MEDIUM
CVSS:6.3(Medium)

CoreGraphics in Apple OS X before 10.11.6 allows local users to obtain sensitive information from kernel memory and consequently gain privileges, or cause a denial of service (out-of-bounds read), via...

CWE-1252016

CVE-2017-18446

MEDIUM
CVSS:6.3(Medium)

cPanel before 64.0.21 allows file-read and file-write operations for demo accounts via the SourceIPCheck API (SEC-250).

CWE-1252017

CVE-2021-39218

MEDIUM
CVSS:6.3(Medium)

Wasmtime is an open source runtime for WebAssembly & WASI. In Wasmtime from version 0.26.0 and before version 0.30.0 is affected by a memory unsoundness vulnerability. There was an invalid free and ou...

CWE-1252021

CVE-2023-1544

MEDIUM
CVSS:6.3(Medium)

A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of...

CWE-1252023

CVE-2023-20851

MEDIUM
CVSS:6.3(Medium)

In stc, there is a possible out of bounds read due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploit...

CWE-1252023

CVE-2023-25514

MEDIUM
CVSS:6.3(Medium)

NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in cuobjdump, where an attacker may cause an out-of-bounds read by tricking a user into running cuobjdump on a malformed input file. ...

CWE-1252023