How severe is CVE-2025-24100?

This vulnerability has a severity rating of LOW with a CVSS score of 3.3 out of 10.

What type of vulnerability is CVE-2025-24100?

This is classified as CWE-1284, which is a common weakness in software security.

CVE-2025-24100

LOW Year: 2025

CVSS v3 Score

3.3

Low

Weakness Type

CWE-1284

View all →

Vulnerability Description

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Ventura 13.7.3, macOS Sequoia 15.3, macOS Sonoma 14.7.3. An app may be able to access information about a user's contacts.

CVE-2023-31331

LOW

CVSS:3.0(Low)

Improper access control in the DRTM firmware could allow a privileged attacker to perform multiple driver initializations, resulting in stack memory corruption that could potentially lead to loss of i...

CWE-12842023

CVE-2025-46656

LOW

CVSS:2.9(Low)

python-markdownify (aka markdownify) before 0.14.1 allows large headline prefixes such as <h9999999> in addition to <h1> through <h6>. This causes memory consumption.

CWE-12842025

CVE-2024-53878

LOW

CVSS:2.8(Low)

NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the cuobjdump binary, where a user could cause a crash by passing a malformed ELF file to cuobjdump. A successful exploit of this ...

CWE-12842024

CVE-2024-53879

LOW

CVSS:2.8(Low)

CWE-12842024

CVE-2022-46143

MEDIUM

CVSS:2.7(Low)

Affected devices do not check the TFTP blocksize correctly. This could allow an authenticated attacker to read from an uninitialized buffer that potentially contains previously allocated data.

CWE-12842022

CVE-2023-23549

LOW