{"vulnerability": "cve-2025-1413", "sightings": [{"uuid": "e03c01ab-d6a2-4f1e-b6b4-b9b0fe56ae43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1413", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ljmxii2rgs23", "content": "", "creation_timestamp": "2025-03-05T12:16:47.658103Z"}, {"uuid": "1f9d3b6b-43ff-4977-9304-e6a0fef8eb1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1413", "type": "seen", "source": "MISP/af1fbe07-e10c-40c4-844e-d4419bdf6f80", "content": "", "creation_timestamp": "2025-08-22T13:26:18.000000Z"}, {"uuid": "2170bfb8-b83f-4337-9f07-3928e8d19ce5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1413", "type": "seen", "source": "https://t.me/cvedetector/19139", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-1413 - Blackmagic Design DaVinci Resolve MacOS File Permission Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-1413 \nPublished : Feb. 28, 2025, 9:15 a.m. | 51\u00a0minutes ago \nDescription : DaVinci Resolve on MacOS was found to be installed with incorrect file permissions (rwxrwxrwx). This is inconsistent with standard macOS security practices, where applications should have drwxr-xr-x permissions. Incorrect permissions allow for Dylib Hijacking. Guest account, other users and applications can exploit this vulnerability for privilege escalation. This issue affects DaVinci Resolve on MacOS in versions\u00a0before 19.1.3. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"28 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-28T11:10:27.000000Z"}, {"uuid": "e775ba72-6414-431b-aa33-1c8d5281c46a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1413", "type": "seen", "source": "Telegram/tzst3T7SuES_eL4Dw73eYpZnj8xogMY6-vkCUQFTMfYlq5w", "content": "", "creation_timestamp": "2025-02-28T10:00:46.000000Z"}, {"uuid": "1640d644-6c69-4ba4-9eb0-e2cfc50bf300", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1413", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lja4meodgz2w", "content": "", "creation_timestamp": "2025-02-28T09:43:48.983602Z"}, {"uuid": "86f1bd72-c108-44f8-bb17-e81df7eb185b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-14133", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m7d364lh6y2q", "content": "", "creation_timestamp": "2025-12-06T13:10:11.479507Z"}, {"uuid": "d368f48d-daef-4165-b0be-8929a83d8ac1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-14134", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m7dazzn5mx2q", "content": "", "creation_timestamp": "2025-12-06T14:55:17.044465Z"}, {"uuid": "f3f4d92b-7ad3-4322-a3a5-488786a82291", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-14136", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m7dbcy2rd32k", "content": "", "creation_timestamp": "2025-12-06T15:00:17.547194Z"}, {"uuid": "eb224f71-b432-4a45-8874-1b5378c8500c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-14135", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m7dblwiojg2n", "content": "", "creation_timestamp": "2025-12-06T15:05:17.549916Z"}, {"uuid": "7b2b0f9e-8470-44ba-9056-b78be7a69525", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-14136", "type": "seen", "source": "https://bsky.app/profile/blackwiremedia.bsky.social/post/3m7ek3z2spv2r", "content": "", "creation_timestamp": "2025-12-07T03:10:07.458138Z"}, {"uuid": "dedc7a88-7ff8-4d1e-8626-eecfe84442bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-14135", "type": "seen", "source": "https://bsky.app/profile/blackwiremedia.bsky.social/post/3m7eu5ugyla2b", "content": "", "creation_timestamp": "2025-12-07T06:10:06.970058Z"}, {"uuid": "0b6823ef-919e-4b4f-89d6-8a11e85350fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-14136", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/115677360258696272", "content": "", "creation_timestamp": "2025-12-07T08:34:01.203491Z"}, {"uuid": "baf4f275-42e2-425a-8a08-8a30b482ff45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-14136", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3m7f477xfpb24", "content": "", "creation_timestamp": "2025-12-07T08:34:02.893534Z"}, {"uuid": "aaab5b81-b380-40ca-9e59-34c543842a25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-14134", "type": "seen", "source": "https://bsky.app/profile/blackwiremedia.bsky.social/post/3m7f67qi4li2r", "content": "", "creation_timestamp": "2025-12-07T09:10:07.349720Z"}, {"uuid": "4dacdfc9-97d5-4d0a-9ca7-8b1a3958f282", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-14133", "type": "seen", "source": "https://bsky.app/profile/blackwiremedia.bsky.social/post/3m7fiblxfmd2b", "content": "", "creation_timestamp": "2025-12-07T12:10:07.487016Z"}, {"uuid": "21b18072-0db7-4285-8aca-a258aafefaa3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-14137", "type": "seen", "source": "https://gist.github.com/Darkcrai86/3192c155d18526d5f6b750266a396ad4", "content": "", "creation_timestamp": "2025-12-12T08:15:26.000000Z"}, {"uuid": "b2294eb1-b893-4cc1-b4c9-cab3f24cf3ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-14132", "type": "seen", "source": "https://gist.github.com/Darkcrai86/20811e4989db1c24666ec9a9fc74b6be", "content": "", "creation_timestamp": "2025-12-12T08:19:30.000000Z"}, {"uuid": "3964ab01-eaec-4e54-8f7a-fa2c1ec29b35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-14131", "type": "seen", "source": "https://gist.github.com/Darkcrai86/97ed25c6c2ae3124f84e414da648701a", "content": "", "creation_timestamp": "2026-01-07T11:17:43.000000Z"}, {"uuid": "f6637cb7-2f2b-4696-8493-50b800046eb0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-14130", "type": "seen", "source": "https://gist.github.com/Darkcrai86/1429d39b1b31ecbc858a20f43aa8c198", "content": "", "creation_timestamp": "2026-01-07T11:20:24.000000Z"}, {"uuid": "59b377b7-7a19-41a4-aa2c-e53c2e92ae63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1413", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5851", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-1413\n\ud83d\udd25 CVSS Score: 9.2 (cvssV4_0, Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N)\n\ud83d\udd39 Description: DaVinci Resolve on MacOS was found to be installed with incorrect file permissions (rwxrwxrwx). This is inconsistent with standard macOS security practices, where applications should have drwxr-xr-x permissions. Incorrect permissions allow for Dylib Hijacking. Guest account, other users and applications can exploit this vulnerability for privilege escalation. This issue affects DaVinci Resolve on MacOS in versions\u00a0before 19.1.3.\n\ud83d\udccf Published: 2025-02-28T08:25:24.641Z\n\ud83d\udccf Modified: 2025-02-28T08:25:24.641Z\n\ud83d\udd17 References:\n1. https://cert.pl/en/posts/2025/02/CVE-2025-1413/\n2. https://cert.pl/posts/2025/02/CVE-2025-1413/\n3. https://apps.apple.com/pl/app/davinci-resolve/id571213070?mt=12", "creation_timestamp": "2025-02-28T09:27:20.000000Z"}]}