Vulnerabilities

CVE-2025-0509

by Fred · 04/02/2025

A security issue was found in Sparkle before version 2.64. An attacker can replace an existing signed update with another payload, bypassing Sparkle’s (Ed)DSA signing checks.

More information : https://github.com/sparkle-project/Sparkle/pull/2550

Similar

Tags: Cybersecurity Alert