Filtered by CWE-284
Total 4022 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2025-59333 1 Executeautomation 1 Mcp-database-server 2025-09-17 8.1 High
The mcp-database-server (MCP Server) 1.1.0 and earlier, as distributed via the npm package @executeautomation/database-server, fails to implement adequate security controls to properly enforce a "read-only" mode. This vulnerability affects only the npm distribution; other distributions are not impacted. As a result, the server is susceptible to abuse and attacks on affected database systems such as PostgreSQL, and potentially others that expose elevated functionalities. These attacks may lead to denial of service and other unexpected behaviors.
CVE-2025-43337 1 Apple 1 Macos 2025-09-17 5.5 Medium
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Tahoe 26. An app may be able to access sensitive user data.
CVE-2025-43340 1 Apple 1 Macos 2025-09-17 7.8 High
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26. An app may be able to break out of its sandbox.
CVE-2025-43369 1 Apple 1 Macos 2025-09-17 5.5 Medium
This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Tahoe 26. An app may be able to access protected user data.
CVE-2025-43371 1 Apple 1 Xcode 2025-09-17 8.2 High
This issue was addressed with improved checks. This issue is fixed in Xcode 26. An app may be able to break out of its sandbox.
CVE-2025-43315 1 Apple 4 Macos, Macos Sequoia, Macos Sonoma and 1 more 2025-09-17 5.5 Medium
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to access user-sensitive data.
CVE-2025-43317 1 Apple 8 Ios, Ipad Os, Ipados and 5 more 2025-09-17 5.5 Medium
A permissions issue was addressed with additional restrictions. This issue is fixed in tvOS 26, watchOS 26, visionOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. An app may be able to access sensitive user data.
CVE-2025-43319 1 Apple 1 Macos 2025-09-17 5.5 Medium
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to access protected user data.
CVE-2025-43321 1 Apple 4 Macos, Macos Sequoia, Macos Sonoma and 1 more 2025-09-17 5.5 Medium
The issue was resolved by blocking unsigned services from launching on Intel Macs. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to access protected user data.
CVE-2025-43325 1 Apple 1 Macos 2025-09-17 5.5 Medium
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Tahoe 26. An app may be able to access sensitive user data.
CVE-2025-43305 1 Apple 1 Macos 2025-09-17 5.5 Medium
A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. A malicious app may be able to access private information.
CVE-2025-43285 1 Apple 1 Macos 2025-09-17 5.5 Medium
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to access protected user data.
CVE-2025-43291 1 Apple 4 Macos, Macos Sequoia, Macos Sonoma and 1 more 2025-09-17 5.5 Medium
A permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to modify protected parts of the file system.
CVE-2025-31269 1 Apple 3 Macos, Macos Sonoma, Macos Tahoe 2025-09-17 5.5 Medium
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to access protected user data.
CVE-2025-31270 1 Apple 1 Macos 2025-09-17 5.5 Medium
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26. An app may be able to access protected user data.
CVE-2025-43204 1 Apple 1 Macos 2025-09-17 7.8 High
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Tahoe 26. An app may be able to break out of its sandbox.
CVE-2025-43207 1 Apple 1 Macos 2025-09-17 5.5 Medium
This issue was addressed with improved entitlements. This issue is fixed in macOS Tahoe 26. An app may be able to access user-sensitive data.
CVE-2025-43208 1 Apple 1 Macos 2025-09-17 5.5 Medium
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26. An app may be able to read sensitive location information.
CVE-2025-43263 1 Apple 1 Xcode 2025-09-17 7.1 High
The issue was addressed with improved checks. This issue is fixed in Xcode 26. An app may be able to read and write files outside of its sandbox.
CVE-2025-24088 1 Apple 1 Macos 2025-09-17 7.5 High
The issue was addressed by adding additional logic. This issue is fixed in macOS Tahoe 26. An app may be able to override MDM-enforced settings from profiles.