CVE-2025-5995 – Canon EOS Webcam Utility Pro MAC OS Directory Permissions Vulnerability

June 26, 2025

CVE ID : CVE-2025-5995

Published : June 26, 2025, 8:15 p.m. | 1 hour, 6 minutes ago

Description : Canon EOS Webcam Utility Pro for MAC OS version 2.3d
(2.3.29) and earlier contains an improper directory permissions vulnerability.
Exploitation of this vulnerability requires administrator access by a malicious
user. An attacker could modify the directory, potentially resulting in code
execution and ultimately leading to privilege escalation.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-53122 – OpenNMS Horizon and Meridian SQL Injection Vulnerability

Next Article CVE-2025-49592 – n8n Open Redirect Vulnerability

Highlights

CVE-2025-47284 – Gardener Gardenlet Privilege Escalation Vulnerability

May 19, 2025

CVE ID : CVE-2025-47284

Published : May 19, 2025, 7:15 p.m. | 22 minutes ago

Description : Gardener implements the automated management and operation of Kubernetes clusters as a service. A security vulnerability was discovered in the `gardenlet` component of Gardener prior to versions 1.116.4, 1.117.5, 1.118.2, and 1.119.0. It could allow a user with administrative privileges for a Gardener project to obtain control over the seed cluster(s) where their shoot clusters are managed. This CVE affects all Gardener installations where gardener/gardener-extension-provider-gcp is in use. Versions 1.116.4, 1.117.5, 1.118.2, and 1.119.0 fix the issue.

Severity: 9.9 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Designing With AI, Not Around It: Practical Advanced Techniques For Product Design Use Cases

Why Companies Are Investing in AI-Powered React.js Development Services in 2025

The coming AI smartphone: Redefining personal tech

Modern React animation libraries: Real examples for engaging UIs

How Debian 13’s little improvements add up to the distro’s surprisingly big leap forward

Why xAI is giving you ‘limited’ free access to Grok 4

How Apple may revamp Siri to a voice assistant I’d actually use (and ditch Gemini for)

I jump-started a bus from the 1930s with this power bank – here’s the verdict

Laravel’s UsePolicy Attribute: Explicit Authorization Control

Laravel’s UsePolicy Attribute: Explicit Authorization Control

The Laravel Way to Build AI Agents That Actually Work

The Laravel Way to Build AI Agents That Actually Work

Microsoft sued over killing support for Windows 10

Microsoft sued over killing support for Windows 10

Grok 4 rolled out for free-tier users worldwide, with some limits

Firefox AI slammed for hogging CPU and draining battery

CVE-2025-5995 – Canon EOS Webcam Utility Pro MAC OS Directory Permissions Vulnerability

WinRAR Zero-Day Under Active Exploitation – Update to Latest Version Immediately

BadCam Attack Turns Trusted Linux Webcams into Stealthy USB Weapons

Benchmarking the Orange Pi 5 Ultra, Orange Pi 5 Max and Orange Pi RV2

CVE-2025-37817 – Linux kernel Double Free in Chameleon Driver

CVE-2025-5950 – IndieBlocks WordPress Stored Cross-Site Scripting Vulnerability

CVE-2025-38233 – Linux kernel Powerpc64 Ftrace Livepatching R15 Clobbered Vulnerability

CVE-2025-47284 – Gardener Gardenlet Privilege Escalation Vulnerability

CVE-2025-6147 – TOTOLINK A702R HTTP POST Request Handler Buffer Overflow Vulnerability

CVE-2025-3455 – WordPress 1 Click Migration Plugin Remote File Upload Vulnerability

From motor control to embodied intelligence

CVE-2025-5995 – Canon EOS Webcam Utility Pro MAC OS Directory Permissions Vulnerability

Related Posts