Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2024-48958
Vulnerability from cvelistv5
Published
2024-10-10 00:00
Modified
2024-10-10 20:35
Severity ?
EPSS score ?
0.03%
(0.07971)
Summary
execute_filter_delta in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted archive file because src can move beyond dst.
References
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:a:libarchive:libarchive:*:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "libarchive", vendor: "libarchive", versions: [ { lessThan: "3.7.5", status: "affected", version: "0", versionType: "custom", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2024-48958", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-10-10T20:35:05.629427Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-125", description: "CWE-125 Out-of-bounds Read", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-10-10T20:35:53.287Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], descriptions: [ { lang: "en", value: "execute_filter_delta in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted archive file because src can move beyond dst.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2024-10-10T01:21:04.109520", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { url: "https://github.com/libarchive/libarchive/compare/v3.7.4...v3.7.5", }, { url: "https://github.com/libarchive/libarchive/pull/2148", }, ], }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2024-48958", datePublished: "2024-10-10T00:00:00", dateReserved: "2024-10-10T00:00:00", dateUpdated: "2024-10-10T20:35:53.287Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { nvd: "{\"cve\":{\"id\":\"CVE-2024-48958\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2024-10-10T02:15:03.057\",\"lastModified\":\"2024-12-02T14:58:37.067\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"execute_filter_delta in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted archive file because src can move beyond dst.\"},{\"lang\":\"es\",\"value\":\"execute_filter_delta en archive_read_support_format_rar.c en libarchive anterior a 3.7.5 permite acceso fuera de los límites a través de un archivo de almacenamiento manipulado específicamente porque src puede moverse más allá de dst.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:libarchive:libarchive:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.6.0\",\"versionEndExcluding\":\"3.7.5\",\"matchCriteriaId\":\"D4C0BF28-3BBD-42CA-9452-6D6D31F73D35\"}]}]}],\"references\":[{\"url\":\"https://github.com/libarchive/libarchive/compare/v3.7.4...v3.7.5\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/libarchive/libarchive/pull/2148\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]}]}}", vulnrichment: { containers: "{\"cna\": {\"providerMetadata\": {\"orgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"shortName\": \"mitre\", \"dateUpdated\": \"2024-10-10T01:21:04.109520\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"execute_filter_delta in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted archive file because src can move beyond dst.\"}], \"affected\": [{\"vendor\": \"n/a\", \"product\": \"n/a\", \"versions\": [{\"version\": \"n/a\", \"status\": \"affected\"}]}], \"references\": [{\"url\": \"https://github.com/libarchive/libarchive/compare/v3.7.4...v3.7.5\"}, {\"url\": \"https://github.com/libarchive/libarchive/pull/2148\"}], \"problemTypes\": [{\"descriptions\": [{\"type\": \"text\", \"lang\": \"en\", \"description\": \"n/a\"}]}]}, \"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.8, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-48958\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-10-10T20:35:05.629427Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:libarchive:libarchive:*:*:*:*:*:*:*:*\"], \"vendor\": \"libarchive\", \"product\": \"libarchive\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"3.7.5\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-125\", \"description\": \"CWE-125 Out-of-bounds Read\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-10-10T20:35:30.230Z\"}}]}", cveMetadata: "{\"state\": \"PUBLISHED\", \"cveId\": \"CVE-2024-48958\", \"assignerOrgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"assignerShortName\": \"mitre\", \"dateUpdated\": \"2024-10-10T20:35:53.287Z\", \"dateReserved\": \"2024-10-10T00:00:00\", \"datePublished\": \"2024-10-10T00:00:00\"}", dataType: "CVE_RECORD", dataVersion: "5.1", }, }, }
ncsc-2025-0102
Vulnerability from csaf_ncscnl
Published
2025-04-01 08:41
Modified
2025-04-01 08:41
Summary
Kwetsbaarheden verholpen in Apple macOS
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten
Apple heeft meerdere kwetsbaarheden verholpen in macOS (Specifiek voor Ventura 13.7.5, Sequoia 15.4 en Sonoma 14.7.5).
Interpretaties
De kwetsbaarheden omvatten onder andere problemen met ongeautoriseerde toegang tot gevoelige gebruikersdata, logboekregistratie-issues, en kwetsbaarheden die het mogelijk maakten voor applicaties om root-rechten te verkrijgen. Deze kwetsbaarheden konden worden misbruikt door kwaadwillenden om toegang te krijgen tot gevoelige informatie of om systeeminstabiliteit te veroorzaken.
Oplossingen
Apple heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.
Kans
medium
Schade
high
CWE-284
Improper Access Control
CWE-416
Use After Free
CWE-476
NULL Pointer Dereference
CWE-94
Improper Control of Generation of Code ('Code Injection')
CWE-400
Uncontrolled Resource Consumption
CWE-770
Allocation of Resources Without Limits or Throttling
CWE-787
Out-of-bounds Write
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
CWE-20
Improper Input Validation
CWE-276
Incorrect Default Permissions
CWE-1025
Comparison Using Wrong Factors
CWE-697
Incorrect Comparison
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE-125
Out-of-bounds Read
CWE-275
CWE-275
CWE-862
Missing Authorization
{ document: { category: "csaf_security_advisory", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", }, }, lang: "nl", notes: [ { category: "legal_disclaimer", text: "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.", }, { category: "description", text: "Apple heeft meerdere kwetsbaarheden verholpen in macOS (Specifiek voor Ventura 13.7.5, Sequoia 15.4 en Sonoma 14.7.5).", title: "Feiten", }, { category: "description", text: "De kwetsbaarheden omvatten onder andere problemen met ongeautoriseerde toegang tot gevoelige gebruikersdata, logboekregistratie-issues, en kwetsbaarheden die het mogelijk maakten voor applicaties om root-rechten te verkrijgen. Deze kwetsbaarheden konden worden misbruikt door kwaadwillenden om toegang te krijgen tot gevoelige informatie of om systeeminstabiliteit te veroorzaken.", title: "Interpretaties", }, { category: "description", text: "Apple heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.", title: "Oplossingen", }, { category: "general", text: "medium", title: "Kans", }, { category: "general", text: "high", title: "Schade", }, { category: "general", text: "Improper Access Control", title: "CWE-284", }, { category: "general", text: "Use After Free", title: "CWE-416", }, { category: "general", text: "NULL Pointer Dereference", title: "CWE-476", }, { category: "general", text: "Improper Control of Generation of Code ('Code Injection')", title: "CWE-94", }, { category: "general", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "general", text: "Allocation of Resources Without Limits or Throttling", title: "CWE-770", }, { category: "general", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "general", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, { category: "general", text: "Improper Input Validation", title: "CWE-20", }, { category: "general", text: "Incorrect Default Permissions", title: "CWE-276", }, { category: "general", text: "Comparison Using Wrong Factors", title: "CWE-1025", }, { category: "general", text: "Incorrect Comparison", title: "CWE-697", }, { category: "general", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, { category: "general", text: "Out-of-bounds Read", title: "CWE-125", }, { category: "general", text: "CWE-275", title: "CWE-275", }, { category: "general", text: "Missing Authorization", title: "CWE-862", }, ], publisher: { category: "coordinator", contact_details: "cert@ncsc.nl", name: "Nationaal Cyber Security Centrum", namespace: "https://www.ncsc.nl/", }, references: [ { category: "external", summary: "Reference - cveprojectv5; nvd", url: "https://support.apple.com/en-us/122375", }, { category: "external", summary: "Reference - cveprojectv5; nvd", url: "https://support.apple.com/en-us/122374", }, { category: "external", summary: "Reference - cveprojectv5; nvd", url: "https://support.apple.com/en-us/122373", }, ], title: "Kwetsbaarheden verholpen in Apple macOS", tracking: { current_release_date: "2025-04-01T08:41:09.934597Z", generator: { date: "2025-02-25T15:15:00Z", engine: { name: "V.A.", version: "1.0", }, }, id: "NCSC-2025-0102", initial_release_date: "2025-04-01T08:41:09.934597Z", revision_history: [ { date: "2025-04-01T08:41:09.934597Z", number: "1.0.0", summary: "Initiele versie", }, ], status: "final", version: "1.0.0", }, }, product_tree: { branches: [ { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "vers:apple/13.7", product: { name: "vers:apple/13.7", product_id: "CSAFPID-1251566", }, }, { category: "product_version_range", name: "vers:unknown/>=13.0|<13.7.3", product: { name: "vers:unknown/>=13.0|<13.7.3", product_id: "CSAFPID-1916435", }, }, { category: "product_version_range", name: "vers:apple/14.7", product: { name: "vers:apple/14.7", product_id: "CSAFPID-1251568", }, }, { category: "product_version_range", name: "vers:apple/15.3", product: { name: "vers:apple/15.3", product_id: "CSAFPID-1915328", }, }, ], category: "product_name", name: "macOS", }, ], category: "product_family", name: "Apple", }, { branches: [ { category: "product_version_range", name: "vers:unknown/13.7", product: { name: "vers:unknown/13.7", product_id: "CSAFPID-1136191", }, }, { category: "product_version_range", name: "vers:unknown/13.7.1", product: { name: "vers:unknown/13.7.1", product_id: "CSAFPID-1245683", product_identification_helper: { cpe: "cpe:2.3:o:apple:macos:13.7.1:*:*:*:*:*:*:*", }, }, }, { category: "product_version_range", name: "vers:unknown/13.7.2", product: { name: "vers:unknown/13.7.2", product_id: "CSAFPID-1496144", }, }, { category: "product_version_range", name: "vers:unknown/13.7.3", product: { name: "vers:unknown/13.7.3", product_id: "CSAFPID-2406261", }, }, { category: "product_version_range", name: "vers:unknown/ventura <13.7.3", product: { name: "vers:unknown/ventura <13.7.3", product_id: "CSAFPID-1904383", }, }, { category: "product_version_range", name: "vers:unknown/unspecified|<13.7", product: { name: "vers:unknown/unspecified|<13.7", product_id: "CSAFPID-1416488", }, }, { category: "product_version_range", name: "vers:unknown/<13.7.3", product: { name: "vers:unknown/<13.7.3", product_id: "CSAFPID-1923307", product_identification_helper: { cpe: "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*", }, }, }, { category: "product_version_range", name: "vers:unknown/14.7", product: { name: "vers:unknown/14.7", product_id: "CSAFPID-1136190", }, }, { category: "product_version_range", name: "vers:unknown/14.7.1", product: { name: "vers:unknown/14.7.1", product_id: "CSAFPID-1245685", product_identification_helper: { cpe: "cpe:2.3:o:apple:macos:14.7.1:*:*:*:*:*:*:*", }, }, }, { category: "product_version_range", name: "vers:unknown/14.7.2", product: { name: "vers:unknown/14.7.2", product_id: "CSAFPID-1496142", }, }, { category: "product_version_range", name: "vers:unknown/14.7.3", product: { name: "vers:unknown/14.7.3", product_id: "CSAFPID-2406265", }, }, { category: "product_version_range", name: "vers:unknown/<14.7.3", product: { name: "vers:unknown/<14.7.3", product_id: "CSAFPID-1923306", product_identification_helper: { cpe: "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*", }, }, }, { category: "product_version_range", name: "vers:unknown/sonoma <14.7.3", product: { name: "vers:unknown/sonoma <14.7.3", product_id: "CSAFPID-1904384", }, }, { category: "product_version_range", name: "vers:unknown/15.0", product: { name: "vers:unknown/15.0", product_id: "CSAFPID-1245684", product_identification_helper: { cpe: "cpe:2.3:o:apple:macos:15.0:-:*:*:*:*:*:*", }, }, }, { category: "product_version_range", name: "vers:unknown/15.1", product: { name: "vers:unknown/15.1", product_id: "CSAFPID-1436077", }, }, { category: "product_version_range", name: "vers:unknown/15.1.1", product: { name: "vers:unknown/15.1.1", product_id: "CSAFPID-1463431", }, }, { category: "product_version_range", name: "vers:unknown/15.2", product: { name: "vers:unknown/15.2", product_id: "CSAFPID-1904042", }, }, { category: "product_version_range", name: "vers:unknown/15.3", product: { name: "vers:unknown/15.3", product_id: "CSAFPID-2492950", }, }, { category: "product_version_range", name: "vers:unknown/unspecified|<15.4", product: { name: "vers:unknown/unspecified|<15.4", product_id: "CSAFPID-2470109", }, }, ], category: "product_name", name: "macOS", }, { branches: [ { category: "product_version_range", name: "vers:apple/13.7.3", product: { name: "vers:apple/13.7.3", product_id: "CSAFPID-1902955", }, }, ], category: "product_name", name: "macOS Ventura", }, ], category: "vendor", name: "Apple", }, ], }, vulnerabilities: [ { cve: "CVE-2023-27043", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2023-27043", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-27043.json", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2023-27043", }, { cve: "CVE-2024-9681", cwe: { id: "CWE-1025", name: "Comparison Using Wrong Factors", }, notes: [ { category: "other", text: "Comparison Using Wrong Factors", title: "CWE-1025", }, { category: "other", text: "Incorrect Comparison", title: "CWE-697", }, { category: "general", text: "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N", title: "CVSSV4", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2024-9681", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-9681.json", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2024-9681", }, { cve: "CVE-2024-40864", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2024-40864", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-40864.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2024-40864", }, { cve: "CVE-2024-48958", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, notes: [ { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, { category: "general", text: "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N", title: "CVSSV4", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2024-48958", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-48958.json", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2024-48958", }, { cve: "CVE-2024-54533", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2024-54533", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-54533.json", }, ], title: "CVE-2024-54533", }, { cve: "CVE-2024-56171", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2024-56171", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-56171.json", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2024-56171", }, { cve: "CVE-2025-24085", cwe: { id: "CWE-276", name: "Incorrect Default Permissions", }, notes: [ { category: "other", text: "Incorrect Default Permissions", title: "CWE-276", }, { category: "other", text: "Use After Free", title: "CWE-416", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24085", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24085.json", }, ], title: "CVE-2025-24085", }, { cve: "CVE-2025-24093", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, notes: [ { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, { category: "other", text: "Incorrect Default Permissions", title: "CWE-276", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24093", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24093.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24093", }, { cve: "CVE-2025-24097", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, notes: [ { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24097", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24097.json", }, ], scores: [ { cvss_v3: { baseScore: 5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24097", }, { cve: "CVE-2025-24113", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24113", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24113.json", }, ], title: "CVE-2025-24113", }, { cve: "CVE-2025-24139", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, notes: [ { category: "other", text: "Allocation of Resources Without Limits or Throttling", title: "CWE-770", }, { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24139", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24139.json", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24139", }, { cve: "CVE-2025-24148", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24148", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24148.json", }, ], title: "CVE-2025-24148", }, { cve: "CVE-2025-24157", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24157", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24157.json", }, ], title: "CVE-2025-24157", }, { cve: "CVE-2025-24163", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, notes: [ { category: "other", text: "Allocation of Resources Without Limits or Throttling", title: "CWE-770", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24163", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24163.json", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24163", }, { cve: "CVE-2025-24164", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24164", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24164.json", }, ], title: "CVE-2025-24164", }, { cve: "CVE-2025-24167", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24167", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24167.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24167", }, { cve: "CVE-2025-24170", cwe: { id: "CWE-276", name: "Incorrect Default Permissions", }, notes: [ { category: "other", text: "Incorrect Default Permissions", title: "CWE-276", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24170", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24170.json", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24170", }, { cve: "CVE-2025-24172", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24172", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24172.json", }, ], title: "CVE-2025-24172", }, { cve: "CVE-2025-24173", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24173", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24173.json", }, ], title: "CVE-2025-24173", }, { cve: "CVE-2025-24178", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24178", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24178.json", }, ], title: "CVE-2025-24178", }, { cve: "CVE-2025-24180", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24180", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24180.json", }, ], title: "CVE-2025-24180", }, { cve: "CVE-2025-24181", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24181", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24181.json", }, ], title: "CVE-2025-24181", }, { cve: "CVE-2025-24182", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24182", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24182.json", }, ], title: "CVE-2025-24182", }, { cve: "CVE-2025-24190", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24190", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24190.json", }, ], title: "CVE-2025-24190", }, { cve: "CVE-2025-24191", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24191", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24191.json", }, ], title: "CVE-2025-24191", }, { cve: "CVE-2025-24192", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24192", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24192.json", }, ], title: "CVE-2025-24192", }, { cve: "CVE-2025-24194", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24194", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24194.json", }, ], title: "CVE-2025-24194", }, { cve: "CVE-2025-24195", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24195", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24195.json", }, ], title: "CVE-2025-24195", }, { cve: "CVE-2025-24196", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24196", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24196.json", }, ], title: "CVE-2025-24196", }, { cve: "CVE-2025-24198", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24198", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24198.json", }, ], title: "CVE-2025-24198", }, { cve: "CVE-2025-24199", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24199", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24199.json", }, ], title: "CVE-2025-24199", }, { cve: "CVE-2025-24202", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24202", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24202.json", }, ], title: "CVE-2025-24202", }, { cve: "CVE-2025-24203", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24203", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24203.json", }, ], title: "CVE-2025-24203", }, { cve: "CVE-2025-24204", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24204", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24204.json", }, ], title: "CVE-2025-24204", }, { cve: "CVE-2025-24205", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24205", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24205.json", }, ], title: "CVE-2025-24205", }, { cve: "CVE-2025-24207", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24207", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24207.json", }, ], title: "CVE-2025-24207", }, { cve: "CVE-2025-24209", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24209", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24209.json", }, ], title: "CVE-2025-24209", }, { cve: "CVE-2025-24210", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24210", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24210.json", }, ], title: "CVE-2025-24210", }, { cve: "CVE-2025-24211", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24211", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24211.json", }, ], title: "CVE-2025-24211", }, { cve: "CVE-2025-24212", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24212", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24212.json", }, ], title: "CVE-2025-24212", }, { cve: "CVE-2025-24213", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24213", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24213.json", }, ], title: "CVE-2025-24213", }, { cve: "CVE-2025-24214", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24214", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24214.json", }, ], title: "CVE-2025-24214", }, { cve: "CVE-2025-24215", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24215", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24215.json", }, ], title: "CVE-2025-24215", }, { cve: "CVE-2025-24216", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24216", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24216.json", }, ], title: "CVE-2025-24216", }, { cve: "CVE-2025-24217", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24217", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24217.json", }, ], title: "CVE-2025-24217", }, { cve: "CVE-2025-24218", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24218", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24218.json", }, ], title: "CVE-2025-24218", }, { cve: "CVE-2025-24228", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24228", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24228.json", }, ], title: "CVE-2025-24228", }, { cve: "CVE-2025-24229", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24229", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24229.json", }, ], title: "CVE-2025-24229", }, { cve: "CVE-2025-24230", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24230", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24230.json", }, ], title: "CVE-2025-24230", }, { cve: "CVE-2025-24231", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24231", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24231.json", }, ], title: "CVE-2025-24231", }, { cve: "CVE-2025-24232", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24232", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24232.json", }, ], title: "CVE-2025-24232", }, { cve: "CVE-2025-24233", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24233", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24233.json", }, ], title: "CVE-2025-24233", }, { cve: "CVE-2025-24234", cwe: { id: "CWE-276", name: "Incorrect Default Permissions", }, notes: [ { category: "other", text: "Incorrect Default Permissions", title: "CWE-276", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24234", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24234.json", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24234", }, { cve: "CVE-2025-24235", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24235", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24235.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24235", }, { cve: "CVE-2025-24236", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24236", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24236.json", }, ], title: "CVE-2025-24236", }, { cve: "CVE-2025-24237", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24237", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24237.json", }, ], title: "CVE-2025-24237", }, { cve: "CVE-2025-24238", cwe: { id: "CWE-276", name: "Incorrect Default Permissions", }, notes: [ { category: "other", text: "Incorrect Default Permissions", title: "CWE-276", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24238", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24238.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24238", }, { cve: "CVE-2025-24239", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24239", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24239.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24239", }, { cve: "CVE-2025-24240", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24240", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24240.json", }, ], title: "CVE-2025-24240", }, { cve: "CVE-2025-24241", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24241", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24241.json", }, ], title: "CVE-2025-24241", }, { cve: "CVE-2025-24242", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24242", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24242.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24242", }, { cve: "CVE-2025-24243", cwe: { id: "CWE-94", name: "Improper Control of Generation of Code ('Code Injection')", }, notes: [ { category: "other", text: "Improper Control of Generation of Code ('Code Injection')", title: "CWE-94", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24243", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24243.json", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24243", }, { cve: "CVE-2025-24244", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24244", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24244.json", }, ], title: "CVE-2025-24244", }, { cve: "CVE-2025-24245", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24245", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24245.json", }, ], title: "CVE-2025-24245", }, { cve: "CVE-2025-24246", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24246", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24246.json", }, ], title: "CVE-2025-24246", }, { cve: "CVE-2025-24247", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24247", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24247.json", }, ], title: "CVE-2025-24247", }, { cve: "CVE-2025-24248", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24248", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24248.json", }, ], title: "CVE-2025-24248", }, { cve: "CVE-2025-24249", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24249", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24249.json", }, ], title: "CVE-2025-24249", }, { cve: "CVE-2025-24250", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24250", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24250.json", }, ], title: "CVE-2025-24250", }, { cve: "CVE-2025-24253", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24253", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24253.json", }, ], title: "CVE-2025-24253", }, { cve: "CVE-2025-24254", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24254", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24254.json", }, ], title: "CVE-2025-24254", }, { cve: "CVE-2025-24255", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24255", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24255.json", }, ], title: "CVE-2025-24255", }, { cve: "CVE-2025-24256", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24256", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24256.json", }, ], title: "CVE-2025-24256", }, { cve: "CVE-2025-24257", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24257", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24257.json", }, ], title: "CVE-2025-24257", }, { cve: "CVE-2025-24259", cwe: { id: "CWE-862", name: "Missing Authorization", }, notes: [ { category: "other", text: "Missing Authorization", title: "CWE-862", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24259", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24259.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24259", }, { cve: "CVE-2025-24260", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24260", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24260.json", }, ], title: "CVE-2025-24260", }, { cve: "CVE-2025-24261", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24261", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24261.json", }, ], title: "CVE-2025-24261", }, { cve: "CVE-2025-24262", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24262", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24262.json", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24262", }, { cve: "CVE-2025-24263", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24263", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24263.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24263", }, { cve: "CVE-2025-24264", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24264", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24264.json", }, ], title: "CVE-2025-24264", }, { cve: "CVE-2025-24265", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24265", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24265.json", }, ], title: "CVE-2025-24265", }, { cve: "CVE-2025-24266", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24266", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24266.json", }, ], title: "CVE-2025-24266", }, { cve: "CVE-2025-24267", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24267", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24267.json", }, ], title: "CVE-2025-24267", }, { cve: "CVE-2025-24269", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24269", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24269.json", }, ], title: "CVE-2025-24269", }, { cve: "CVE-2025-24272", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24272", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24272.json", }, ], title: "CVE-2025-24272", }, { cve: "CVE-2025-24273", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24273", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24273.json", }, ], title: "CVE-2025-24273", }, { cve: "CVE-2025-24276", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24276", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24276.json", }, ], title: "CVE-2025-24276", }, { cve: "CVE-2025-24277", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24277", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24277.json", }, ], title: "CVE-2025-24277", }, { cve: "CVE-2025-24278", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24278", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24278.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24278", }, { cve: "CVE-2025-24279", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24279", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24279.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24279", }, { cve: "CVE-2025-24280", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24280", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24280.json", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24280", }, { cve: "CVE-2025-24281", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24281", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24281.json", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-24281", }, { cve: "CVE-2025-24282", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24282", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24282.json", }, ], title: "CVE-2025-24282", }, { cve: "CVE-2025-24283", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-24283", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24283.json", }, ], title: "CVE-2025-24283", }, { cve: "CVE-2025-27113", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, { category: "general", text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N", title: "CVSSV4", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-27113", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-27113.json", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-27113", }, { cve: "CVE-2025-30424", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30424", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30424.json", }, ], title: "CVE-2025-30424", }, { cve: "CVE-2025-30425", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30425", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30425.json", }, ], title: "CVE-2025-30425", }, { cve: "CVE-2025-30426", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30426", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30426.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-30426", }, { cve: "CVE-2025-30427", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30427", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30427.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-30427", }, { cve: "CVE-2025-30429", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30429", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30429.json", }, ], title: "CVE-2025-30429", }, { cve: "CVE-2025-30430", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30430", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30430.json", }, ], title: "CVE-2025-30430", }, { cve: "CVE-2025-30432", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30432", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30432.json", }, ], title: "CVE-2025-30432", }, { cve: "CVE-2025-30433", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30433", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30433.json", }, ], title: "CVE-2025-30433", }, { cve: "CVE-2025-30435", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30435", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30435.json", }, ], title: "CVE-2025-30435", }, { cve: "CVE-2025-30437", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30437", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30437.json", }, ], title: "CVE-2025-30437", }, { cve: "CVE-2025-30438", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30438", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30438.json", }, ], title: "CVE-2025-30438", }, { cve: "CVE-2025-30439", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30439", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30439.json", }, ], title: "CVE-2025-30439", }, { cve: "CVE-2025-30443", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30443", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30443.json", }, ], title: "CVE-2025-30443", }, { cve: "CVE-2025-30444", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30444", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30444.json", }, ], title: "CVE-2025-30444", }, { cve: "CVE-2025-30446", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30446", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30446.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-30446", }, { cve: "CVE-2025-30447", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30447", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30447.json", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-30447", }, { cve: "CVE-2025-30449", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30449", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30449.json", }, ], title: "CVE-2025-30449", }, { cve: "CVE-2025-30450", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30450", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30450.json", }, ], title: "CVE-2025-30450", }, { cve: "CVE-2025-30451", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30451", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30451.json", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-30451", }, { cve: "CVE-2025-30452", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "general", text: "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N", title: "CVSSV4", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30452", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30452.json", }, ], title: "CVE-2025-30452", }, { cve: "CVE-2025-30454", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30454", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30454.json", }, ], title: "CVE-2025-30454", }, { cve: "CVE-2025-30455", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30455", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30455.json", }, ], title: "CVE-2025-30455", }, { cve: "CVE-2025-30456", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30456", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30456.json", }, ], title: "CVE-2025-30456", }, { cve: "CVE-2025-30457", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30457", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30457.json", }, ], title: "CVE-2025-30457", }, { cve: "CVE-2025-30458", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30458", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30458.json", }, ], title: "CVE-2025-30458", }, { cve: "CVE-2025-30460", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30460", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30460.json", }, ], title: "CVE-2025-30460", }, { cve: "CVE-2025-30461", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30461", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30461.json", }, ], title: "CVE-2025-30461", }, { cve: "CVE-2025-30462", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30462", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30462.json", }, ], title: "CVE-2025-30462", }, { cve: "CVE-2025-30463", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30463", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30463.json", }, ], title: "CVE-2025-30463", }, { cve: "CVE-2025-30464", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30464", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30464.json", }, ], title: "CVE-2025-30464", }, { cve: "CVE-2025-30465", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30465", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30465.json", }, ], title: "CVE-2025-30465", }, { cve: "CVE-2025-30467", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30467", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30467.json", }, ], title: "CVE-2025-30467", }, { cve: "CVE-2025-30470", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30470", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30470.json", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-30470", }, { cve: "CVE-2025-30471", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-30471", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30471.json", }, ], title: "CVE-2025-30471", }, { cve: "CVE-2025-31182", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-31182", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-31182.json", }, ], title: "CVE-2025-31182", }, { cve: "CVE-2025-31183", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, { category: "general", text: "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N", title: "CVSSV4", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-31183", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-31183.json", }, ], title: "CVE-2025-31183", }, { cve: "CVE-2025-31184", cwe: { id: "CWE-275", name: "-", }, notes: [ { category: "other", text: "CWE-275", title: "CWE-275", }, { category: "general", text: "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N", title: "CVSSV4", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-31184", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-31184.json", }, ], title: "CVE-2025-31184", }, { cve: "CVE-2025-31187", cwe: { id: "CWE-284", name: "Improper Access Control", }, notes: [ { category: "other", text: "Improper Access Control", title: "CWE-284", }, { category: "general", text: "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N", title: "CVSSV4", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-31187", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-31187.json", }, ], title: "CVE-2025-31187", }, { cve: "CVE-2025-31188", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, notes: [ { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, { category: "general", text: "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N", title: "CVSSV4", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-31188", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-31188.json", }, ], title: "CVE-2025-31188", }, { cve: "CVE-2025-31191", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, { category: "general", text: "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N", title: "CVSSV4", }, ], product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-31191", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-31191.json", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, ], title: "CVE-2025-31191", }, { cve: "CVE-2025-31192", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-31192", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-31192.json", }, ], title: "CVE-2025-31192", }, { cve: "CVE-2025-31194", product_status: { known_affected: [ "CSAFPID-1251566", "CSAFPID-1136191", "CSAFPID-1245683", "CSAFPID-1496144", "CSAFPID-2406261", "CSAFPID-1902955", "CSAFPID-1904383", "CSAFPID-1416488", "CSAFPID-1916435", "CSAFPID-1923307", "CSAFPID-1251568", "CSAFPID-1136190", "CSAFPID-1245685", "CSAFPID-1496142", "CSAFPID-2406265", "CSAFPID-1923306", "CSAFPID-1904384", "CSAFPID-1915328", "CSAFPID-1245684", "CSAFPID-1436077", "CSAFPID-1463431", "CSAFPID-1904042", "CSAFPID-2492950", "CSAFPID-2470109", ], }, references: [ { category: "self", summary: "CVE-2025-31194", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-31194.json", }, ], title: "CVE-2025-31194", }, ], }
ncsc-2025-0103
Vulnerability from csaf_ncscnl
Published
2025-04-01 08:42
Modified
2025-04-01 08:42
Summary
Kwetsbaarheden verholpen in Apple iOS en iPadOS
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten
Apple heeft meerdere kwetsbaarheden verholpen in iOS en iPadOS.
Interpretaties
De kwetsbaarheden omvatten onder andere geheugenbeheerproblemen, ongeautoriseerde toegang tot gevoelige gebruikersdata, en de mogelijkheid voor applicaties om hun sandbox-omgevingen te ontsnappen. Deze kwetsbaarheden konden leiden tot ongeautoriseerde toegang, gegevenswijzigingen, of zelfs Denial-of-Service. Voor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden een malafide app te installeren of link te volgen.
Oplossingen
Apple heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.
Kans
medium
Schade
high
CWE-1025
Comparison Using Wrong Factors
CWE-697
Incorrect Comparison
CWE-125
Out-of-bounds Read
CWE-284
Improper Access Control
CWE-416
Use After Free
CWE-476
NULL Pointer Dereference
CWE-94
Improper Control of Generation of Code ('Code Injection')
CWE-400
Uncontrolled Resource Consumption
CWE-863
Incorrect Authorization
CWE-787
Out-of-bounds Write
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
CWE-20
Improper Input Validation
CWE-276
Incorrect Default Permissions
CWE-275
CWE-275
CWE-770
Allocation of Resources Without Limits or Throttling
{ document: { category: "csaf_security_advisory", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", }, }, lang: "nl", notes: [ { category: "legal_disclaimer", text: "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.", }, { category: "description", text: "Apple heeft meerdere kwetsbaarheden verholpen in iOS en iPadOS.", title: "Feiten", }, { category: "description", text: "De kwetsbaarheden omvatten onder andere geheugenbeheerproblemen, ongeautoriseerde toegang tot gevoelige gebruikersdata, en de mogelijkheid voor applicaties om hun sandbox-omgevingen te ontsnappen. Deze kwetsbaarheden konden leiden tot ongeautoriseerde toegang, gegevenswijzigingen, of zelfs Denial-of-Service. Voor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden een malafide app te installeren of link te volgen.", title: "Interpretaties", }, { category: "description", text: "Apple heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.", title: "Oplossingen", }, { category: "general", text: "medium", title: "Kans", }, { category: "general", text: "high", title: "Schade", }, { category: "general", text: "Comparison Using Wrong Factors", title: "CWE-1025", }, { category: "general", text: "Incorrect Comparison", title: "CWE-697", }, { category: "general", text: "Out-of-bounds Read", title: "CWE-125", }, { category: "general", text: "Improper Access Control", title: "CWE-284", }, { category: "general", text: "Use After Free", title: "CWE-416", }, { category: "general", text: "NULL Pointer Dereference", title: "CWE-476", }, { category: "general", text: "Improper Control of Generation of Code ('Code Injection')", title: "CWE-94", }, { category: "general", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "general", text: "Incorrect Authorization", title: "CWE-863", }, { category: "general", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "general", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, { category: "general", text: "Improper Input Validation", title: "CWE-20", }, { category: "general", text: "Incorrect Default Permissions", title: "CWE-276", }, { category: "general", text: "CWE-275", title: "CWE-275", }, { category: "general", text: "Allocation of Resources Without Limits or Throttling", title: "CWE-770", }, ], publisher: { category: "coordinator", contact_details: "cert@ncsc.nl", name: "Nationaal Cyber Security Centrum", namespace: "https://www.ncsc.nl/", }, references: [ { category: "external", summary: "Reference - ncscclear", url: "https://support.apple.com/en-us/122345", }, { category: "external", summary: "Reference - ncscclear", url: "https://support.apple.com/en-us/122346", }, { category: "external", summary: "Reference - cveprojectv5; nvd", url: "https://support.apple.com/en-us/122372", }, { category: "external", summary: "Reference - cveprojectv5; nvd", url: "https://support.apple.com/en-us/122371", }, ], title: "Kwetsbaarheden verholpen in Apple iOS en iPadOS", tracking: { current_release_date: "2025-04-01T08:42:27.059536Z", generator: { date: "2025-02-25T15:15:00Z", engine: { name: "V.A.", version: "1.0", }, }, id: "NCSC-2025-0103", initial_release_date: "2025-04-01T08:42:27.059536Z", revision_history: [ { date: "2025-04-01T08:42:27.059536Z", number: "1.0.0", summary: "Initiele versie", }, ], status: "final", version: "1.0.0", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "vers:apple/16.7.11", product: { name: "vers:apple/16.7.11", product_id: "CSAFPID-2588450", }, }, { category: "product_version_range", name: "vers:apple/18.2", product: { name: "vers:apple/18.2", product_id: "CSAFPID-1432307", }, }, { category: "product_version_range", name: "vers:apple/18.3", product: { name: "vers:apple/18.3", product_id: "CSAFPID-1902947", }, }, { category: "product_version_range", name: "vers:apple/18.3.2", product: { name: "vers:apple/18.3.2", product_id: "CSAFPID-2462478", }, }, { category: "product_version_range", name: "vers:apple/18.4", product: { name: "vers:apple/18.4", product_id: "CSAFPID-2588454", }, }, { category: "product_version_range", name: "vers:unknown/<18.2", product: { name: "vers:unknown/<18.2", product_id: "CSAFPID-1436912", }, }, { category: "product_version_range", name: "vers:unknown/<18.3", product: { name: "vers:unknown/<18.3", product_id: "CSAFPID-1904380", }, }, { category: "product_version_range", name: "vers:unknown/<18.3.1", product: { name: "vers:unknown/<18.3.1", product_id: "CSAFPID-2177846", }, }, { category: "product_version_range", name: "vers:unknown/<18.3.2", product: { name: "vers:unknown/<18.3.2", product_id: "CSAFPID-2469033", }, }, { category: "product_version_range", name: "vers:apple/15.8.4", product: { name: "vers:apple/15.8.4", product_id: "CSAFPID-2588452", }, }, ], category: "product_name", name: "iOS", }, { branches: [ { category: "product_version_range", name: "vers:unknown/unknown", product: { name: "vers:unknown/unknown", product_id: "CSAFPID-1332226", }, }, { category: "product_version_range", name: "vers:unknown/unspecified|<18.2", product: { name: "vers:unknown/unspecified|<18.2", product_id: "CSAFPID-1432291", }, }, { category: "product_version_range", name: "vers:unknown/unspecified|<18.3", product: { name: "vers:unknown/unspecified|<18.3", product_id: "CSAFPID-1901367", }, }, { category: "product_version_range", name: "vers:unknown/unspecified|<18.4", product: { name: "vers:unknown/unspecified|<18.4", product_id: "CSAFPID-2590080", }, }, ], category: "product_name", name: "iOS and iPadOS", }, { branches: [ { category: "product_version_range", name: "vers:unknown/15.0", product: { name: "vers:unknown/15.0", product_id: "CSAFPID-90190", product_identification_helper: { cpe: "cpe:2.3:o:apple:iphone_os:15.0:*:*:*:*:*:*:*", }, }, }, { category: "product_version_range", name: "vers:unknown/15.1", product: { name: "vers:unknown/15.1", product_id: "CSAFPID-90119", }, }, { category: "product_version_range", name: "vers:unknown/15.2", product: { name: "vers:unknown/15.2", product_id: "CSAFPID-90182", }, }, { category: "product_version_range", name: "vers:unknown/15.3", product: { name: "vers:unknown/15.3", product_id: "CSAFPID-773820", }, }, { category: "product_version_range", name: "vers:unknown/15.4", product: { name: "vers:unknown/15.4", product_id: "CSAFPID-90174", }, }, { category: "product_version_range", name: "vers:unknown/15.5", product: { name: "vers:unknown/15.5", product_id: "CSAFPID-90216", }, }, { category: "product_version_range", name: "vers:unknown/15.6", product: { name: "vers:unknown/15.6", product_id: "CSAFPID-90200", }, }, { category: "product_version_range", name: "vers:unknown/15.7", product: { name: "vers:unknown/15.7", product_id: "CSAFPID-90232", }, }, { category: "product_version_range", name: "vers:unknown/15.8", product: { name: "vers:unknown/15.8", product_id: "CSAFPID-90303", }, }, { category: "product_version_range", name: "vers:unknown/15.8.1", product: { name: "vers:unknown/15.8.1", product_id: "CSAFPID-821264", }, }, { category: "product_version_range", name: "vers:unknown/16.0", product: { name: "vers:unknown/16.0", product_id: "CSAFPID-90255", }, }, { category: "product_version_range", name: "vers:unknown/16.1", product: { name: "vers:unknown/16.1", product_id: "CSAFPID-90236", }, }, { category: "product_version_range", name: "vers:unknown/16.2", product: { name: "vers:unknown/16.2", product_id: "CSAFPID-90241", }, }, { category: "product_version_range", name: "vers:unknown/16.3", product: { name: "vers:unknown/16.3", product_id: "CSAFPID-90305", }, }, { category: "product_version_range", name: "vers:unknown/16.4", product: { name: "vers:unknown/16.4", product_id: "CSAFPID-90301", }, }, { category: "product_version_range", name: "vers:unknown/16.5", product: { name: "vers:unknown/16.5", product_id: "CSAFPID-90297", }, }, { category: "product_version_range", name: "vers:unknown/16.6", product: { name: "vers:unknown/16.6", product_id: "CSAFPID-90295", }, }, { category: "product_version_range", name: "vers:unknown/16.7", product: { name: "vers:unknown/16.7", product_id: "CSAFPID-90291", }, }, { category: "product_version_range", name: "vers:unknown/17.0", product: { name: "vers:unknown/17.0", product_id: "CSAFPID-90302", product_identification_helper: { cpe: "cpe:2.3:a:apple:iphone_os:17.0:*:*:*:*:*:*:*", }, }, }, { category: "product_version_range", name: "vers:unknown/17.1", product: { name: "vers:unknown/17.1", product_id: "CSAFPID-90306", }, }, { category: "product_version_range", name: "vers:unknown/17.2", product: { name: "vers:unknown/17.2", product_id: "CSAFPID-90307", }, }, { category: "product_version_range", name: "vers:unknown/17.3", product: { name: "vers:unknown/17.3", product_id: "CSAFPID-90308", }, }, { category: "product_version_range", name: "vers:unknown/17.4", product: { name: "vers:unknown/17.4", product_id: "CSAFPID-1077909", }, }, { category: "product_version_range", name: "vers:unknown/17.5", product: { name: "vers:unknown/17.5", product_id: "CSAFPID-1136180", }, }, { category: "product_version_range", name: "vers:unknown/17.6", product: { name: "vers:unknown/17.6", product_id: "CSAFPID-1136554", }, }, { category: "product_version_range", name: "vers:unknown/17.7", product: { name: "vers:unknown/17.7", product_id: "CSAFPID-1136185", }, }, { category: "product_version_range", name: "vers:unknown/18.0", product: { name: "vers:unknown/18.0", product_id: "CSAFPID-1161343", product_identification_helper: { cpe: "cpe:2.3:a:apple:iphone_os:18.0:*:*:*:*:*:*:*", }, }, }, { category: "product_version_range", name: "vers:unknown/18.1", product: { name: "vers:unknown/18.1", product_id: "CSAFPID-1443657", }, }, { category: "product_version_range", name: "vers:unknown/18.2", product: { name: "vers:unknown/18.2", product_id: "CSAFPID-1906294", }, }, { category: "product_version_range", name: "vers:unknown/18.3", product: { name: "vers:unknown/18.3", product_id: "CSAFPID-1987760", }, }, ], category: "product_name", name: "iPhone OS", }, { branches: [ { branches: [ { category: "product_version_range", name: "vers:apple/18.2", product: { name: "vers:apple/18.2", product_id: "CSAFPID-1618595", }, }, { category: "product_version_range", name: "vers:apple/18.3", product: { name: "vers:apple/18.3", product_id: "CSAFPID-1915327", }, }, ], category: "product_name", name: "Iphone Os", }, ], category: "product_family", name: "Apple", }, ], category: "vendor", name: "Apple", }, ], }, vulnerabilities: [ { cve: "CVE-2025-24217", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24217", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24217.json", }, ], title: "CVE-2025-24217", }, { cve: "CVE-2025-24221", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24221", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24221.json", }, ], title: "CVE-2025-24221", }, { cve: "CVE-2025-24230", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24230", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24230.json", }, ], title: "CVE-2025-24230", }, { cve: "CVE-2025-24237", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24237", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24237.json", }, ], title: "CVE-2025-24237", }, { cve: "CVE-2025-24238", cwe: { id: "CWE-276", name: "Incorrect Default Permissions", }, notes: [ { category: "other", text: "Incorrect Default Permissions", title: "CWE-276", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24238", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24238.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2025-24238", }, { cve: "CVE-2025-24243", cwe: { id: "CWE-94", name: "Improper Control of Generation of Code ('Code Injection')", }, notes: [ { category: "other", text: "Improper Control of Generation of Code ('Code Injection')", title: "CWE-94", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24243", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24243.json", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2025-24243", }, { cve: "CVE-2025-24244", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24244", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24244.json", }, ], title: "CVE-2025-24244", }, { cve: "CVE-2025-24257", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24257", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24257.json", }, ], title: "CVE-2025-24257", }, { cve: "CVE-2025-24264", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24264", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24264.json", }, ], title: "CVE-2025-24264", }, { cve: "CVE-2025-24283", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24283", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24283.json", }, ], title: "CVE-2025-24283", }, { cve: "CVE-2025-27113", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, { category: "general", text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N", title: "CVSSV4", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-27113", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-27113.json", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2025-27113", }, { cve: "CVE-2025-30425", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30425", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30425.json", }, ], title: "CVE-2025-30425", }, { cve: "CVE-2025-30426", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30426", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30426.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2025-30426", }, { cve: "CVE-2025-30427", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30427", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30427.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2025-30427", }, { cve: "CVE-2025-30428", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30428", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30428.json", }, ], title: "CVE-2025-30428", }, { cve: "CVE-2025-30429", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30429", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30429.json", }, ], title: "CVE-2025-30429", }, { cve: "CVE-2025-30430", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30430", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30430.json", }, ], title: "CVE-2025-30430", }, { cve: "CVE-2025-30432", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30432", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30432.json", }, ], title: "CVE-2025-30432", }, { cve: "CVE-2025-30433", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30433", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30433.json", }, ], title: "CVE-2025-30433", }, { cve: "CVE-2025-30434", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30434", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30434.json", }, ], title: "CVE-2025-30434", }, { cve: "CVE-2025-30438", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30438", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30438.json", }, ], title: "CVE-2025-30438", }, { cve: "CVE-2025-30439", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30439", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30439.json", }, ], title: "CVE-2025-30439", }, { cve: "CVE-2025-30447", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30447", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30447.json", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2025-30447", }, { cve: "CVE-2025-30454", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30454", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30454.json", }, ], title: "CVE-2025-30454", }, { cve: "CVE-2025-30456", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30456", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30456.json", }, ], title: "CVE-2025-30456", }, { cve: "CVE-2025-30463", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30463", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30463.json", }, ], title: "CVE-2025-30463", }, { cve: "CVE-2025-30465", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30465", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30465.json", }, ], title: "CVE-2025-30465", }, { cve: "CVE-2025-30467", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30467", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30467.json", }, ], title: "CVE-2025-30467", }, { cve: "CVE-2025-30469", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30469", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30469.json", }, ], title: "CVE-2025-30469", }, { cve: "CVE-2025-30470", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30470", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30470.json", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2025-30470", }, { cve: "CVE-2025-30471", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-30471", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30471.json", }, ], title: "CVE-2025-30471", }, { cve: "CVE-2025-31182", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-31182", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-31182.json", }, ], title: "CVE-2025-31182", }, { cve: "CVE-2025-31183", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, { category: "general", text: "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N", title: "CVSSV4", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-31183", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-31183.json", }, ], title: "CVE-2025-31183", }, { cve: "CVE-2025-31184", cwe: { id: "CWE-275", name: "-", }, notes: [ { category: "other", text: "CWE-275", title: "CWE-275", }, { category: "general", text: "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N", title: "CVSSV4", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-31184", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-31184.json", }, ], title: "CVE-2025-31184", }, { cve: "CVE-2025-31191", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, { category: "general", text: "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N", title: "CVSSV4", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-31191", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-31191.json", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2025-31191", }, { cve: "CVE-2025-31192", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-31192", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-31192.json", }, ], title: "CVE-2025-31192", }, { cve: "CVE-2024-9681", cwe: { id: "CWE-1025", name: "Comparison Using Wrong Factors", }, notes: [ { category: "other", text: "Comparison Using Wrong Factors", title: "CWE-1025", }, { category: "other", text: "Incorrect Comparison", title: "CWE-697", }, { category: "general", text: "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N", title: "CVSSV4", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2024-9681", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-9681.json", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2024-9681", }, { cve: "CVE-2024-48958", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, notes: [ { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, { category: "general", text: "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N", title: "CVSSV4", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2024-48958", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-48958.json", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2024-48958", }, { cve: "CVE-2024-54502", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, notes: [ { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2024-54502", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-54502.json", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2024-54502", }, { cve: "CVE-2024-54508", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2024-54508", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-54508.json", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2024-54508", }, { cve: "CVE-2024-54534", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2024-54534", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-54534.json", }, ], title: "CVE-2024-54534", }, { cve: "CVE-2024-54543", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2024-54543", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-54543.json", }, ], title: "CVE-2024-54543", }, { cve: "CVE-2024-56171", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2024-56171", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-56171.json", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2024-56171", }, { cve: "CVE-2025-24085", cwe: { id: "CWE-276", name: "Incorrect Default Permissions", }, notes: [ { category: "other", text: "Incorrect Default Permissions", title: "CWE-276", }, { category: "other", text: "Use After Free", title: "CWE-416", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24085", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24085.json", }, ], title: "CVE-2025-24085", }, { cve: "CVE-2025-24095", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24095", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24095.json", }, ], title: "CVE-2025-24095", }, { cve: "CVE-2025-24097", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, notes: [ { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24097", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24097.json", }, ], scores: [ { cvss_v3: { baseScore: 5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2025-24097", }, { cve: "CVE-2025-24113", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24113", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24113.json", }, ], title: "CVE-2025-24113", }, { cve: "CVE-2025-24163", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, notes: [ { category: "other", text: "Allocation of Resources Without Limits or Throttling", title: "CWE-770", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24163", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24163.json", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2025-24163", }, { cve: "CVE-2025-24167", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24167", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24167.json", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2025-24167", }, { cve: "CVE-2025-24173", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24173", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24173.json", }, ], title: "CVE-2025-24173", }, { cve: "CVE-2025-24178", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24178", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24178.json", }, ], title: "CVE-2025-24178", }, { cve: "CVE-2025-24180", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24180", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24180.json", }, ], title: "CVE-2025-24180", }, { cve: "CVE-2025-24182", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24182", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24182.json", }, ], title: "CVE-2025-24182", }, { cve: "CVE-2025-24190", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24190", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24190.json", }, ], title: "CVE-2025-24190", }, { cve: "CVE-2025-24192", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24192", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24192.json", }, ], title: "CVE-2025-24192", }, { cve: "CVE-2025-24193", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24193", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24193.json", }, ], title: "CVE-2025-24193", }, { cve: "CVE-2025-24194", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24194", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24194.json", }, ], title: "CVE-2025-24194", }, { cve: "CVE-2025-24198", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24198", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24198.json", }, ], title: "CVE-2025-24198", }, { cve: "CVE-2025-24200", cwe: { id: "CWE-284", name: "Improper Access Control", }, notes: [ { category: "other", text: "Improper Access Control", title: "CWE-284", }, { category: "other", text: "Incorrect Authorization", title: "CWE-863", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24200", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24200.json", }, ], title: "CVE-2025-24200", }, { cve: "CVE-2025-24201", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24201", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24201.json", }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, ], title: "CVE-2025-24201", }, { cve: "CVE-2025-24202", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24202", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24202.json", }, ], title: "CVE-2025-24202", }, { cve: "CVE-2025-24203", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24203", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24203.json", }, ], title: "CVE-2025-24203", }, { cve: "CVE-2025-24205", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24205", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24205.json", }, ], title: "CVE-2025-24205", }, { cve: "CVE-2025-24208", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24208", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24208.json", }, ], title: "CVE-2025-24208", }, { cve: "CVE-2025-24209", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24209", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24209.json", }, ], title: "CVE-2025-24209", }, { cve: "CVE-2025-24210", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24210", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24210.json", }, ], title: "CVE-2025-24210", }, { cve: "CVE-2025-24211", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24211", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24211.json", }, ], title: "CVE-2025-24211", }, { cve: "CVE-2025-24212", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24212", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24212.json", }, ], title: "CVE-2025-24212", }, { cve: "CVE-2025-24213", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24213", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24213.json", }, ], title: "CVE-2025-24213", }, { cve: "CVE-2025-24214", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24214", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24214.json", }, ], title: "CVE-2025-24214", }, { cve: "CVE-2025-24215", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24215", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24215.json", }, ], title: "CVE-2025-24215", }, { cve: "CVE-2025-24216", product_status: { known_affected: [ "CSAFPID-2588450", "CSAFPID-1432307", "CSAFPID-1902947", "CSAFPID-2462478", "CSAFPID-2588454", "CSAFPID-1436912", "CSAFPID-1904380", "CSAFPID-2177846", "CSAFPID-2469033", "CSAFPID-1332226", "CSAFPID-1432291", "CSAFPID-1901367", "CSAFPID-2590080", "CSAFPID-2588452", "CSAFPID-90190", "CSAFPID-90119", "CSAFPID-90182", "CSAFPID-773820", "CSAFPID-90174", "CSAFPID-90216", "CSAFPID-90200", "CSAFPID-90232", "CSAFPID-90303", "CSAFPID-821264", "CSAFPID-90255", "CSAFPID-90236", "CSAFPID-90241", "CSAFPID-90305", "CSAFPID-90301", "CSAFPID-90297", "CSAFPID-90295", "CSAFPID-90291", "CSAFPID-90302", "CSAFPID-90306", "CSAFPID-90307", "CSAFPID-90308", "CSAFPID-1077909", "CSAFPID-1136180", "CSAFPID-1136554", "CSAFPID-1136185", "CSAFPID-1618595", "CSAFPID-1915327", "CSAFPID-1161343", "CSAFPID-1443657", "CSAFPID-1906294", "CSAFPID-1987760", ], }, references: [ { category: "self", summary: "CVE-2025-24216", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24216.json", }, ], title: "CVE-2025-24216", }, ], }
fkie_cve-2024-48958
Vulnerability from fkie_nvd
Published
2024-10-10 02:15
Modified
2024-12-02 14:58
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Summary
execute_filter_delta in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted archive file because src can move beyond dst.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| libarchive | libarchive | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:libarchive:libarchive:*:*:*:*:*:*:*:*", matchCriteriaId: "D4C0BF28-3BBD-42CA-9452-6D6D31F73D35", versionEndExcluding: "3.7.5", versionStartIncluding: "3.6.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "execute_filter_delta in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted archive file because src can move beyond dst.", }, { lang: "es", value: "execute_filter_delta en archive_read_support_format_rar.c en libarchive anterior a 3.7.5 permite acceso fuera de los límites a través de un archivo de almacenamiento manipulado específicamente porque src puede moverse más allá de dst.", }, ], id: "CVE-2024-48958", lastModified: "2024-12-02T14:58:37.067", metrics: { cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 5.9, source: "134c704f-9b21-4f2e-91b3-4a467353bcc0", type: "Secondary", }, ], }, published: "2024-10-10T02:15:03.057", references: [ { source: "cve@mitre.org", tags: [ "Patch", ], url: "https://github.com/libarchive/libarchive/compare/v3.7.4...v3.7.5", }, { source: "cve@mitre.org", tags: [ "Patch", ], url: "https://github.com/libarchive/libarchive/pull/2148", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Analyzed", weaknesses: [ { description: [ { lang: "en", value: "CWE-125", }, ], source: "nvd@nist.gov", type: "Primary", }, { description: [ { lang: "en", value: "CWE-125", }, ], source: "134c704f-9b21-4f2e-91b3-4a467353bcc0", type: "Secondary", }, ], }
ghsa-9mw4-2ppr-4mcg
Vulnerability from github
Published
2024-10-10 03:30
Modified
2024-10-11 18:32
Severity ?
Details
execute_filter_delta in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted archive file because src can move beyond dst.
{ affected: [], aliases: [ "CVE-2024-48958", ], database_specific: { cwe_ids: [ "CWE-125", ], github_reviewed: false, github_reviewed_at: null, nvd_published_at: "2024-10-10T02:15:03Z", severity: "HIGH", }, details: "execute_filter_delta in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted archive file because src can move beyond dst.", id: "GHSA-9mw4-2ppr-4mcg", modified: "2024-10-11T18:32:48Z", published: "2024-10-10T03:30:45Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-48958", }, { type: "WEB", url: "https://github.com/libarchive/libarchive/pull/2148", }, { type: "WEB", url: "https://github.com/libarchive/libarchive/compare/v3.7.4...v3.7.5", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", type: "CVSS_V3", }, ], }
wid-sec-w-2024-3142
Vulnerability from csaf_certbund
Published
2024-10-09 22:00
Modified
2024-11-07 23:00
Summary
libarchive: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
libarchive ist eine C Bibliothek und ein Kommandozeilen-Tool zum Lesen und Bearbeiten von tar, cpio, zip, ISO und anderen Formaten.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in libarchive ausnutzen, um Sicherheitsvorkehrungen zu umgehen.
Betroffene Betriebssysteme
- Linux
- Windows
{ document: { aggregate_severity: { text: "mittel", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "libarchive ist eine C Bibliothek und ein Kommandozeilen-Tool zum Lesen und Bearbeiten von tar, cpio, zip, ISO und anderen Formaten.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in libarchive ausnutzen, um Sicherheitsvorkehrungen zu umgehen.", title: "Angriff", }, { category: "general", text: "- Linux\n- Windows", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2024-3142 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3142.json", }, { category: "self", summary: "WID-SEC-2024-3142 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3142", }, { category: "external", summary: "NIST Vulnerability Database vom 2024-10-09", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-48957", }, { category: "external", summary: "NIST Vulnerability Database vom 2024-10-09", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-48958", }, { category: "external", summary: "Red Hat Bugzilla vom 2024-10-09", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2317729", }, { category: "external", summary: "RedHat Customer Portal vom 2024-10-09", url: "https://access.redhat.com/security/cve/CVE-2024-48957", }, { category: "external", summary: "Fedora Security Advisory FEDORA-2024-AB6348928B vom 2024-10-15", url: "https://bodhi.fedoraproject.org/updates/FEDORA-2024-ab6348928b", }, { category: "external", summary: "Ubuntu Security Notice USN-7070-1 vom 2024-10-16", url: "https://ubuntu.com/security/notices/USN-7070-1", }, { category: "external", summary: "Fedora Security Advisory FEDORA-2024-80E4603B92 vom 2024-10-16", url: "https://bodhi.fedoraproject.org/updates/FEDORA-2024-80e4603b92", }, { category: "external", summary: "SUSE Security Update SUSE-SU-2024:3675-1 vom 2024-10-16", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/RP4NL6JY64B34TRDXT26D5RFLF7FBODV/", }, { category: "external", summary: "SUSE Security Update SUSE-SU-2024:3940-1 vom 2024-11-07", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/T52X7E57LHYSHFIOUR75MGSIL4OEOTYD/", }, ], source_lang: "en-US", title: "libarchive: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen", tracking: { current_release_date: "2024-11-07T23:00:00.000+00:00", generator: { date: "2024-11-08T11:11:12.043+00:00", engine: { name: "BSI-WID", version: "1.3.8", }, }, id: "WID-SEC-W-2024-3142", initial_release_date: "2024-10-09T22:00:00.000+00:00", revision_history: [ { date: "2024-10-09T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2024-10-15T22:00:00.000+00:00", number: "2", summary: "Neue Updates von Fedora und Ubuntu aufgenommen", }, { date: "2024-10-16T22:00:00.000+00:00", number: "3", summary: "Neue Updates von SUSE aufgenommen", }, { date: "2024-11-07T23:00:00.000+00:00", number: "4", summary: "Neue Updates von SUSE aufgenommen", }, ], status: "final", version: "4", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "Fedora Linux", product: { name: "Fedora Linux", product_id: "74185", product_identification_helper: { cpe: "cpe:/o:fedoraproject:fedora:-", }, }, }, ], category: "vendor", name: "Fedora", }, { branches: [ { branches: [ { category: "product_version_range", name: "<3.7.5", product: { name: "Open Source libarchive <3.7.5", product_id: "T038241", }, }, { category: "product_version", name: "3.7.5", product: { name: "Open Source libarchive 3.7.5", product_id: "T038241-fixed", product_identification_helper: { cpe: "cpe:/a:libarchive:libarchive:3.7.5", }, }, }, ], category: "product_name", name: "libarchive", }, ], category: "vendor", name: "Open Source", }, { branches: [ { category: "product_name", name: "SUSE Linux", product: { name: "SUSE Linux", product_id: "T002207", product_identification_helper: { cpe: "cpe:/o:suse:suse_linux:-", }, }, }, ], category: "vendor", name: "SUSE", }, { branches: [ { category: "product_name", name: "Ubuntu Linux", product: { name: "Ubuntu Linux", product_id: "T000126", product_identification_helper: { cpe: "cpe:/o:canonical:ubuntu_linux:-", }, }, }, ], category: "vendor", name: "Ubuntu", }, ], }, vulnerabilities: [ { cve: "CVE-2024-48957", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in libarchive. Diese Fehler existieren in den Funktionen execute_filter_audio und execute_filter_delta und erlauben einen Out-of-Bounds-Zugriff über eine manipulierte Archivdatei. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Sicherheitsmaßnahmen zu umgehen. Zur erfolgreichen Ausnutzung ist eine Benutzerinteraktion erforderlich.", }, ], product_status: { known_affected: [ "T038241", "T002207", "T000126", "74185", ], }, release_date: "2024-10-09T22:00:00.000+00:00", title: "CVE-2024-48957", }, { cve: "CVE-2024-48958", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in libarchive. Diese Fehler existieren in den Funktionen execute_filter_audio und execute_filter_delta und erlauben einen Out-of-Bounds-Zugriff über eine manipulierte Archivdatei. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Sicherheitsmaßnahmen zu umgehen. Zur erfolgreichen Ausnutzung ist eine Benutzerinteraktion erforderlich.", }, ], product_status: { known_affected: [ "T038241", "T002207", "T000126", "74185", ], }, release_date: "2024-10-09T22:00:00.000+00:00", title: "CVE-2024-48958", }, ], }
WID-SEC-W-2024-3142
Vulnerability from csaf_certbund
Published
2024-10-09 22:00
Modified
2024-11-07 23:00
Summary
libarchive: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
libarchive ist eine C Bibliothek und ein Kommandozeilen-Tool zum Lesen und Bearbeiten von tar, cpio, zip, ISO und anderen Formaten.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in libarchive ausnutzen, um Sicherheitsvorkehrungen zu umgehen.
Betroffene Betriebssysteme
- Linux
- Windows
{ document: { aggregate_severity: { text: "mittel", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "libarchive ist eine C Bibliothek und ein Kommandozeilen-Tool zum Lesen und Bearbeiten von tar, cpio, zip, ISO und anderen Formaten.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in libarchive ausnutzen, um Sicherheitsvorkehrungen zu umgehen.", title: "Angriff", }, { category: "general", text: "- Linux\n- Windows", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2024-3142 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3142.json", }, { category: "self", summary: "WID-SEC-2024-3142 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3142", }, { category: "external", summary: "NIST Vulnerability Database vom 2024-10-09", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-48957", }, { category: "external", summary: "NIST Vulnerability Database vom 2024-10-09", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-48958", }, { category: "external", summary: "Red Hat Bugzilla vom 2024-10-09", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2317729", }, { category: "external", summary: "RedHat Customer Portal vom 2024-10-09", url: "https://access.redhat.com/security/cve/CVE-2024-48957", }, { category: "external", summary: "Fedora Security Advisory FEDORA-2024-AB6348928B vom 2024-10-15", url: "https://bodhi.fedoraproject.org/updates/FEDORA-2024-ab6348928b", }, { category: "external", summary: "Ubuntu Security Notice USN-7070-1 vom 2024-10-16", url: "https://ubuntu.com/security/notices/USN-7070-1", }, { category: "external", summary: "Fedora Security Advisory FEDORA-2024-80E4603B92 vom 2024-10-16", url: "https://bodhi.fedoraproject.org/updates/FEDORA-2024-80e4603b92", }, { category: "external", summary: "SUSE Security Update SUSE-SU-2024:3675-1 vom 2024-10-16", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/RP4NL6JY64B34TRDXT26D5RFLF7FBODV/", }, { category: "external", summary: "SUSE Security Update SUSE-SU-2024:3940-1 vom 2024-11-07", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/T52X7E57LHYSHFIOUR75MGSIL4OEOTYD/", }, ], source_lang: "en-US", title: "libarchive: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen", tracking: { current_release_date: "2024-11-07T23:00:00.000+00:00", generator: { date: "2024-11-08T11:11:12.043+00:00", engine: { name: "BSI-WID", version: "1.3.8", }, }, id: "WID-SEC-W-2024-3142", initial_release_date: "2024-10-09T22:00:00.000+00:00", revision_history: [ { date: "2024-10-09T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2024-10-15T22:00:00.000+00:00", number: "2", summary: "Neue Updates von Fedora und Ubuntu aufgenommen", }, { date: "2024-10-16T22:00:00.000+00:00", number: "3", summary: "Neue Updates von SUSE aufgenommen", }, { date: "2024-11-07T23:00:00.000+00:00", number: "4", summary: "Neue Updates von SUSE aufgenommen", }, ], status: "final", version: "4", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "Fedora Linux", product: { name: "Fedora Linux", product_id: "74185", product_identification_helper: { cpe: "cpe:/o:fedoraproject:fedora:-", }, }, }, ], category: "vendor", name: "Fedora", }, { branches: [ { branches: [ { category: "product_version_range", name: "<3.7.5", product: { name: "Open Source libarchive <3.7.5", product_id: "T038241", }, }, { category: "product_version", name: "3.7.5", product: { name: "Open Source libarchive 3.7.5", product_id: "T038241-fixed", product_identification_helper: { cpe: "cpe:/a:libarchive:libarchive:3.7.5", }, }, }, ], category: "product_name", name: "libarchive", }, ], category: "vendor", name: "Open Source", }, { branches: [ { category: "product_name", name: "SUSE Linux", product: { name: "SUSE Linux", product_id: "T002207", product_identification_helper: { cpe: "cpe:/o:suse:suse_linux:-", }, }, }, ], category: "vendor", name: "SUSE", }, { branches: [ { category: "product_name", name: "Ubuntu Linux", product: { name: "Ubuntu Linux", product_id: "T000126", product_identification_helper: { cpe: "cpe:/o:canonical:ubuntu_linux:-", }, }, }, ], category: "vendor", name: "Ubuntu", }, ], }, vulnerabilities: [ { cve: "CVE-2024-48957", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in libarchive. Diese Fehler existieren in den Funktionen execute_filter_audio und execute_filter_delta und erlauben einen Out-of-Bounds-Zugriff über eine manipulierte Archivdatei. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Sicherheitsmaßnahmen zu umgehen. Zur erfolgreichen Ausnutzung ist eine Benutzerinteraktion erforderlich.", }, ], product_status: { known_affected: [ "T038241", "T002207", "T000126", "74185", ], }, release_date: "2024-10-09T22:00:00.000+00:00", title: "CVE-2024-48957", }, { cve: "CVE-2024-48958", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in libarchive. Diese Fehler existieren in den Funktionen execute_filter_audio und execute_filter_delta und erlauben einen Out-of-Bounds-Zugriff über eine manipulierte Archivdatei. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Sicherheitsmaßnahmen zu umgehen. Zur erfolgreichen Ausnutzung ist eine Benutzerinteraktion erforderlich.", }, ], product_status: { known_affected: [ "T038241", "T002207", "T000126", "74185", ], }, release_date: "2024-10-09T22:00:00.000+00:00", title: "CVE-2024-48958", }, ], }
suse-su-2024:3940-1
Vulnerability from csaf_suse
Published
2024-11-07 10:09
Modified
2024-11-07 10:09
Summary
Security update for libarchive
Notes
Title of the patch
Security update for libarchive
Description of the patch
This update for libarchive fixes the following issues:
- CVE-2024-20697: Fixed Out of bounds Remote Code Execution Vulnerability (bsc#1225972).
- CVE-2024-48958: Fixed out-of-bounds access via a crafted archive file in execute_filter_delta function (bsc#1231624).
Patchnames
SUSE-2024-3940,SUSE-SLE-Module-Basesystem-15-SP6-2024-3940,SUSE-SLE-Module-Development-Tools-15-SP6-2024-3940,openSUSE-SLE-15.6-2024-3940
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for libarchive", title: "Title of the patch", }, { category: "description", text: "This update for libarchive fixes the following issues:\n\n- CVE-2024-20697: Fixed Out of bounds Remote Code Execution Vulnerability (bsc#1225972).\n- CVE-2024-48958: Fixed out-of-bounds access via a crafted archive file in execute_filter_delta function (bsc#1231624).\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2024-3940,SUSE-SLE-Module-Basesystem-15-SP6-2024-3940,SUSE-SLE-Module-Development-Tools-15-SP6-2024-3940,openSUSE-SLE-15.6-2024-3940", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_3940-1.json", }, { category: "self", summary: "URL for SUSE-SU-2024:3940-1", url: "https://www.suse.com/support/update/announcement/2024/suse-su-20243940-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2024:3940-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2024-November/019789.html", }, { category: "self", summary: "SUSE Bug 1225972", url: "https://bugzilla.suse.com/1225972", }, { category: "self", summary: "SUSE Bug 1231624", url: "https://bugzilla.suse.com/1231624", }, { category: "self", summary: "SUSE CVE CVE-2024-20697 page", url: "https://www.suse.com/security/cve/CVE-2024-20697/", }, { category: "self", summary: "SUSE CVE CVE-2024-48958 page", url: "https://www.suse.com/security/cve/CVE-2024-48958/", }, ], title: "Security update for libarchive", tracking: { current_release_date: "2024-11-07T10:09:07Z", generator: { date: "2024-11-07T10:09:07Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2024:3940-1", initial_release_date: "2024-11-07T10:09:07Z", revision_history: [ { date: "2024-11-07T10:09:07Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "bsdtar-3.7.2-150600.3.9.1.aarch64", product: { name: "bsdtar-3.7.2-150600.3.9.1.aarch64", product_id: "bsdtar-3.7.2-150600.3.9.1.aarch64", }, }, { category: "product_version", name: "libarchive-devel-3.7.2-150600.3.9.1.aarch64", product: { name: "libarchive-devel-3.7.2-150600.3.9.1.aarch64", product_id: "libarchive-devel-3.7.2-150600.3.9.1.aarch64", }, }, { category: "product_version", name: "libarchive13-3.7.2-150600.3.9.1.aarch64", product: { name: "libarchive13-3.7.2-150600.3.9.1.aarch64", product_id: "libarchive13-3.7.2-150600.3.9.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "libarchive13-64bit-3.7.2-150600.3.9.1.aarch64_ilp32", product: { name: "libarchive13-64bit-3.7.2-150600.3.9.1.aarch64_ilp32", product_id: "libarchive13-64bit-3.7.2-150600.3.9.1.aarch64_ilp32", }, }, ], category: "architecture", name: "aarch64_ilp32", }, { branches: [ { category: "product_version", name: "bsdtar-3.7.2-150600.3.9.1.i586", product: { name: "bsdtar-3.7.2-150600.3.9.1.i586", product_id: "bsdtar-3.7.2-150600.3.9.1.i586", }, }, { category: "product_version", name: "libarchive-devel-3.7.2-150600.3.9.1.i586", product: { name: "libarchive-devel-3.7.2-150600.3.9.1.i586", product_id: "libarchive-devel-3.7.2-150600.3.9.1.i586", }, }, { category: "product_version", name: "libarchive13-3.7.2-150600.3.9.1.i586", product: { name: "libarchive13-3.7.2-150600.3.9.1.i586", product_id: "libarchive13-3.7.2-150600.3.9.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "bsdtar-3.7.2-150600.3.9.1.ppc64le", product: { name: "bsdtar-3.7.2-150600.3.9.1.ppc64le", product_id: "bsdtar-3.7.2-150600.3.9.1.ppc64le", }, }, { category: "product_version", name: "libarchive-devel-3.7.2-150600.3.9.1.ppc64le", product: { name: "libarchive-devel-3.7.2-150600.3.9.1.ppc64le", product_id: "libarchive-devel-3.7.2-150600.3.9.1.ppc64le", }, }, { category: "product_version", name: "libarchive13-3.7.2-150600.3.9.1.ppc64le", product: { name: "libarchive13-3.7.2-150600.3.9.1.ppc64le", product_id: "libarchive13-3.7.2-150600.3.9.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "bsdtar-3.7.2-150600.3.9.1.s390x", product: { name: "bsdtar-3.7.2-150600.3.9.1.s390x", product_id: "bsdtar-3.7.2-150600.3.9.1.s390x", }, }, { category: "product_version", name: "libarchive-devel-3.7.2-150600.3.9.1.s390x", product: { name: "libarchive-devel-3.7.2-150600.3.9.1.s390x", product_id: "libarchive-devel-3.7.2-150600.3.9.1.s390x", }, }, { category: "product_version", name: "libarchive13-3.7.2-150600.3.9.1.s390x", product: { name: "libarchive13-3.7.2-150600.3.9.1.s390x", product_id: "libarchive13-3.7.2-150600.3.9.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "bsdtar-3.7.2-150600.3.9.1.x86_64", product: { name: "bsdtar-3.7.2-150600.3.9.1.x86_64", product_id: "bsdtar-3.7.2-150600.3.9.1.x86_64", }, }, { category: "product_version", name: "libarchive-devel-3.7.2-150600.3.9.1.x86_64", product: { name: "libarchive-devel-3.7.2-150600.3.9.1.x86_64", product_id: "libarchive-devel-3.7.2-150600.3.9.1.x86_64", }, }, { category: "product_version", name: "libarchive13-3.7.2-150600.3.9.1.x86_64", product: { name: "libarchive13-3.7.2-150600.3.9.1.x86_64", product_id: "libarchive13-3.7.2-150600.3.9.1.x86_64", }, }, { category: "product_version", name: "libarchive13-32bit-3.7.2-150600.3.9.1.x86_64", product: { name: "libarchive13-32bit-3.7.2-150600.3.9.1.x86_64", product_id: "libarchive13-32bit-3.7.2-150600.3.9.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Module for Basesystem 15 SP6", product: { name: "SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-basesystem:15:sp6", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Development Tools 15 SP6", product: { name: "SUSE Linux Enterprise Module for Development Tools 15 SP6", product_id: "SUSE Linux Enterprise Module for Development Tools 15 SP6", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-development-tools:15:sp6", }, }, }, { category: "product_name", name: "openSUSE Leap 15.6", product: { name: "openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.6", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "libarchive-devel-3.7.2-150600.3.9.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.aarch64", }, product_reference: "libarchive-devel-3.7.2-150600.3.9.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "libarchive-devel-3.7.2-150600.3.9.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.ppc64le", }, product_reference: "libarchive-devel-3.7.2-150600.3.9.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "libarchive-devel-3.7.2-150600.3.9.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.s390x", }, product_reference: "libarchive-devel-3.7.2-150600.3.9.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "libarchive-devel-3.7.2-150600.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.x86_64", }, product_reference: "libarchive-devel-3.7.2-150600.3.9.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "libarchive13-3.7.2-150600.3.9.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.aarch64", }, product_reference: "libarchive13-3.7.2-150600.3.9.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "libarchive13-3.7.2-150600.3.9.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.ppc64le", }, product_reference: "libarchive13-3.7.2-150600.3.9.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "libarchive13-3.7.2-150600.3.9.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.s390x", }, product_reference: "libarchive13-3.7.2-150600.3.9.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "libarchive13-3.7.2-150600.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.x86_64", }, product_reference: "libarchive13-3.7.2-150600.3.9.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "bsdtar-3.7.2-150600.3.9.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6", product_id: "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.aarch64", }, product_reference: "bsdtar-3.7.2-150600.3.9.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Development Tools 15 SP6", }, { category: "default_component_of", full_product_name: { name: "bsdtar-3.7.2-150600.3.9.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6", product_id: "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.ppc64le", }, product_reference: "bsdtar-3.7.2-150600.3.9.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Development Tools 15 SP6", }, { category: "default_component_of", full_product_name: { name: "bsdtar-3.7.2-150600.3.9.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6", product_id: "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.s390x", }, product_reference: "bsdtar-3.7.2-150600.3.9.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Development Tools 15 SP6", }, { category: "default_component_of", full_product_name: { name: "bsdtar-3.7.2-150600.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6", product_id: "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.x86_64", }, product_reference: "bsdtar-3.7.2-150600.3.9.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Development Tools 15 SP6", }, { category: "default_component_of", full_product_name: { name: "bsdtar-3.7.2-150600.3.9.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.aarch64", }, product_reference: "bsdtar-3.7.2-150600.3.9.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "bsdtar-3.7.2-150600.3.9.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.ppc64le", }, product_reference: "bsdtar-3.7.2-150600.3.9.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "bsdtar-3.7.2-150600.3.9.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.s390x", }, product_reference: "bsdtar-3.7.2-150600.3.9.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "bsdtar-3.7.2-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.x86_64", }, product_reference: "bsdtar-3.7.2-150600.3.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "libarchive-devel-3.7.2-150600.3.9.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.aarch64", }, product_reference: "libarchive-devel-3.7.2-150600.3.9.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "libarchive-devel-3.7.2-150600.3.9.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.ppc64le", }, product_reference: "libarchive-devel-3.7.2-150600.3.9.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "libarchive-devel-3.7.2-150600.3.9.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.s390x", }, product_reference: "libarchive-devel-3.7.2-150600.3.9.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "libarchive-devel-3.7.2-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.x86_64", }, product_reference: "libarchive-devel-3.7.2-150600.3.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "libarchive13-3.7.2-150600.3.9.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.aarch64", }, product_reference: "libarchive13-3.7.2-150600.3.9.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "libarchive13-3.7.2-150600.3.9.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.ppc64le", }, product_reference: "libarchive13-3.7.2-150600.3.9.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "libarchive13-3.7.2-150600.3.9.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.s390x", }, product_reference: "libarchive13-3.7.2-150600.3.9.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "libarchive13-3.7.2-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.x86_64", }, product_reference: "libarchive13-3.7.2-150600.3.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "libarchive13-32bit-3.7.2-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:libarchive13-32bit-3.7.2-150600.3.9.1.x86_64", }, product_reference: "libarchive13-32bit-3.7.2-150600.3.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, ], }, vulnerabilities: [ { cve: "CVE-2024-20697", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2024-20697", }, ], notes: [ { category: "general", text: "Windows libarchive Remote Code Execution Vulnerability", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive13-32bit-3.7.2-150600.3.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2024-20697", url: "https://www.suse.com/security/cve/CVE-2024-20697", }, { category: "external", summary: "SUSE Bug 1225972 for CVE-2024-20697", url: "https://bugzilla.suse.com/1225972", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive13-32bit-3.7.2-150600.3.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive13-32bit-3.7.2-150600.3.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-11-07T10:09:07Z", details: "important", }, ], title: "CVE-2024-20697", }, { cve: "CVE-2024-48958", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2024-48958", }, ], notes: [ { category: "general", text: "execute_filter_delta in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted archive file because src can move beyond dst.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive13-32bit-3.7.2-150600.3.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2024-48958", url: "https://www.suse.com/security/cve/CVE-2024-48958", }, { category: "external", summary: "SUSE Bug 1231622 for CVE-2024-48958", url: "https://bugzilla.suse.com/1231622", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive13-32bit-3.7.2-150600.3.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive-devel-3.7.2-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:libarchive13-3.7.2-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Development Tools 15 SP6:bsdtar-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:bsdtar-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:libarchive-devel-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.aarch64", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.s390x", "openSUSE Leap 15.6:libarchive13-3.7.2-150600.3.9.1.x86_64", "openSUSE Leap 15.6:libarchive13-32bit-3.7.2-150600.3.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-11-07T10:09:07Z", details: "important", }, ], title: "CVE-2024-48958", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.