| CVE-2025-43287 |
Apple ImageIO |
ImageIO is a macOS framework for reading and writing image files. A memory-corruption vulnerability allowed a malicious image to corrupt process memory. Apple fixed the issue by improving memory handling. |
DongHa Lee |
link |
| CVE-2025-43372 |
Apple CoreMedia |
CoreMedia is Apple media framework for handling audio and video content. A flaw in CoreMedia allowed a malicious media file to cause app crashes or memory corruption. Apple fixed the issue by improving input validation on iPhone 11 and later and corresponding iPad models. |
DongHa Lee |
link |
| CVE-2025-53015 |
ImageMagick |
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0, infinite lines occur when writing during a specific XMP file conversion command. Version 7.1.2-0 fixes the issue. |
Shinyoung Won and DongHa Lee |
link |
| CVE-2025-4605 |
USD for Maya |
The USD (Universal Scene Description) plugin for Autodesk Maya has been affected by the vulnerability listed below. Exploitation of this vulnerability can lead to arbitrary code execution. Exploitation of this vulnerability requires user interaction. |
DongHa Lee |
link |