CVEs Archive - Page 10 of 22

CVE-2025-30066 — tj-actions changed-files GitHub Action — tj-actions/changed-files GitHub Action Embedded Malicious Code Vulnerability

CISA KEV•CVE-2025-30066•tj-actions changed-files GitHub Action• March 18, 2025

Action: Apply mitigations as set forth in the CISA instructions linked below. Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Due: 2025-04-08

Details NVD

CVE-2025-24201 — Apple Multiple Products — Apple Multiple Products WebKit Out-of-Bounds Write Vulnerability

CISA KEV•CVE-2025-24201•Apple Multiple Products• March 13, 2025

Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Due: 2025-04-03

Details NVD

CVE-2025-21590 — Juniper Junos OS — Juniper Junos OS Improper Isolation or Compartmentalization Vulnerability

CISA KEV•CVE-2025-21590•Juniper Junos OS• March 13, 2025

Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Due: 2025-04-03

Details NVD

CVE-2025-24993 — Microsoft Windows — Microsoft Windows NTFS Heap-Based Buffer Overflow Vulnerability

CISA KEV•CVE-2025-24993•Microsoft Windows• March 11, 2025

Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Due: 2025-04-01

Details NVD

« 1 … 8 9 10