CVE-2025-31257

MEDIUM Year: 2025
CVSS v3 Score
4.7
Medium
Weakness Type
CWE-119
View all →

Vulnerability Description

This issue was addressed with improved memory handling. This issue is fixed in watchOS 11.5, tvOS 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. Processing maliciously crafted web content may lead to an unexpected Safari crash.

Related Vulnerabilities

CVE-2017-8627

MEDIUM
CVSS:4.7(Medium)

Windows Subsystem for Linux in Windows 10 1703, allows a denial of service vulnerability due to the way it handles objects in memory, aka "Windows Subsystem for Linux Denial of Service Vulnerability".

CWE-1192017

CVE-2020-3451

MEDIUM
CVSS:4.7(Medium)

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute arb...

CWE-1192020

CVE-2023-45221

MEDIUM
CVSS:4.8(Medium)

Improper buffer restrictions in Intel(R) Media SDK all versions may allow an authenticated user to potentially enable escalation of privilege via local access.

CWE-1192023

CVE-2019-19481

MEDIUM
CVSS:4.6(Medium)

An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. libopensc/card-cac1.c mishandles buffer limits for CAC certificates.

CWE-1192019

CVE-2022-41877

MEDIUM
CVSS:4.6(Medium)

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing input length validation in `drive` channel. A malicious server can trick a FreeRDP based client ...

CWE-1192022

CVE-2014-6031

MEDIUM
CVSS:4.9(Medium)

Buffer overflow in the mcpq daemon in F5 BIG-IP systems 10.x before 10.2.4 HF12, 11.x before 11.2.1 HF15, 11.3.x, 11.4.x before 11.4.1 HF9, 11.5.x before 11.5.2 HF1, and 11.6.0 before HF4, and Enterpr...

CWE-1192014