ZDI-25-167: Apple macOS ICC Profile Parsing Out-Of-Bounds Read Information Disclosure Vulnerability - Cyber Security News

Read Time:17 Second

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 3.3. The following CVEs are assigned: CVE-2025-24139.

More Stories

Apache Tomcat RCE

What is the Vulnerability?On March 10, 2025, Apache issued a security advisory regarding a critical vulnerability (CVE-2025-24813) affecting the Apache...

USN-7375-1: Org Mode vulnerabilities

It was discovered that Org Mode did not correctly handle filenames containing shell metacharacters. An attacker could possibly use this...

USN-7374-1: containerd vulnerability

Benjamin Koltermann discovered that containerd incorrectly handled large user id values. This could result in containers possibly being run as...

exim-4.98.2-1.el8

FEDORA-EPEL-2025-9b4f4b88ff Packages in this update: exim-4.98.2-1.el8 Update description: This is update fixing CVE 2025-30232. Read More

exim-4.98.2-1.el9

FEDORA-EPEL-2025-ff88bfea14 Packages in this update: exim-4.98.2-1.el9 Update description: This is an update fixing CVE 2025-30232. Read More

exim-4.98.2-1.fc40

FEDORA-2025-3a56fe6159 Packages in this update: exim-4.98.2-1.fc40 Update description: This is an update fixing CVE 2025-30232. Read More