CVE-2025-51497

{"id": "CVE-2025-51497", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 1.8}]}, "published": "2025-07-17T18:15:27.417", "references": [{"url": "https://adguard.com/en/adguard-safari/overview.html", "tags": ["Product"], "source": "[email protected]"}, {"url": "https://github.com/AdguardTeam/AdGuardForSafari", "tags": ["Product"], "source": "[email protected]"}, {"url": "https://www.mcrich23.com/post/adguard-messed-up-their-logging", "tags": ["Third Party Advisory"], "source": "[email protected]"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-532"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in AdGuard plugin before 1.11.22 for Safari on MacOS. AdGaurd verbosely logged each url that Safari accessed when the plugin was active. These logs went into the MacOS general logs for any unsandboxed process to read. This may be disabled in version 1.11.22."}, {"lang": "es", "value": "Se detect\u00f3 un problema en el complemento AdGuard para Safari en macOS, antes de la versi\u00f3n 1.11.22. AdGuard registraba detalladamente cada URL a la que Safari acced\u00eda cuando el complemento estaba activo. Estos registros se guardaban en los registros generales de macOS para que cualquier proceso no protegido los pudiera leer. Es posible que esto est\u00e9 deshabilitado en la versi\u00f3n 1.11.22."}], "lastModified": "2025-10-09T19:13:49.823", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:adguard:adguard_for_safari:*:*:*:*:*:macos:*:*", "vulnerable": true, "matchCriteriaId": "8836221A-F475-4AA8-B7D9-E6779ACA95A9", "versionEndExcluding": "1.11.22"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}