VDB

GCVE-110-NCSC-2025-103

GCVE-110-NCSC-2025-103
Advisory PublishedCVSS 9.8/10
Vulnetix · Advisory published April 1, 2025
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Weaknesses (CWE)

CWE-275-CWE-276Incorrect Default PermissionsCWE-94Improper Control of Generation of Code ('Code Injection')CWE-476NULL Pointer DereferenceCWE-200Exposure of Sensitive Information to an Unauthorized ActorCWE-400Uncontrolled Resource ConsumptionCWE-1025Comparison Using Wrong FactorsCWE-125Out-of-bounds ReadCWE-20Improper Input ValidationCWE-787Out-of-bounds WriteCWE-416Use After FreeCWE-770Allocation of Resources Without Limits or ThrottlingCWE-284Improper Access Control

Risk Scores

CVSS 3.1
9.8/10
Critical · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersionsPlatforms
Applevers:unknown/17.4
Applevers:unknown/16.7
Applevers:unknown/<18.2
Applevers:unknown/16.6
Applevers:unknown/<18.3
Applevers:unknown/15.1
Applevers:apple/18.3
Applevers:unknown/15.2
Applevers:unknown/17.3
Applevers:unknown/18.3
Applevers:unknown/unspecified|<18.3
Applevers:unknown/16.4
Applevers:unknown/15.8.1
Applevers:unknown/unspecified|<18.2
Applevers:unknown/15.8
Applevers:unknown/15.6
Applevers:unknown/15.7
Applevers:unknown/16.3
Applevers:unknown/15.4
Applevers:unknown/unspecified|<18.4
Applevers:unknown/16.2
Applevers:unknown/17.2
Applevers:unknown/17.7
Applevers:unknown/<18.3.2
Applevers:unknown/17.5
Applevers:unknown/17.0
Applevers:unknown/16.5
Applevers:apple/18.2
Applevers:unknown/17.6
Applevers:apple/18.4
Applevers:unknown/unknown
Applevers:unknown/18.0
Applevers:unknown/16.1
Applevers:apple/15.8.4
Applevers:apple/16.7.11
Applevers:unknown/15.5
Applevers:unknown/17.1
Applevers:unknown/16.0
Applevers:unknown/15.0
Applevers:unknown/18.2
Applevers:unknown/18.1
Applevers:unknown/<18.3.1
Applevers:unknown/15.3
Applevers:apple/18.3.2

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›