Lucene search
K

35 matches found

The Hacker News
The Hacker News
added 2026/03/26 11:7 a.m.7 views

Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in Recent Mass Attacks

The kernel exploit for two security vulnerabilities used in the recently uncovered Apple iOS exploit kit known as Coruna is an updated version of the same exploit that was used in the Operation Triangulation campaign back in 2023, according to new findings from Kaspersky. "When Coruna was first...

7.8CVSS7.3AI score0.51517EPSS
Exploits3
Securelist
Securelist
added 2026/03/26 8:0 a.m.6 views

Coruna: the framework used in Operation Triangulation

Introduction On March 4, 2026, Google and iVerify published reports about a highly sophisticated exploit kit targeting Apple iPhone devices. According to Google, the exploit kit was first discovered in targeted attacks conducted by a customer of an unnamed surveillance vendor. It was later used b...

7.8CVSS7.8AI score0.51517EPSS
Exploits3
EUVD
EUVD
added 2025/11/09 6:30 p.m.1 views

EUVD-2025-38606

Malicious code in yuni-bakwan46-ruro npm...

6.6AI score
Exploits0
OSV
OSV
added 2025/08/20 6:2 a.m.0 views

BELL-CVE-2025-38606

Bulletin has no description...

5.5CVSS6AI score0.00139EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/08/19 11:22 p.m.2 views

SUSE CVE-2025-38606

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Avoid accessing uninitialized arvif-ar during beacon miss During beacon miss handling, ath12k driver iterates over active virtual interfaces vifs and attempts to access the radio object ar via arvif-deflink-ar...

5.5CVSS6.5AI score0.00139EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/08/19 10:8 p.m.4 views

CVE-2025-38606

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Avoid accessing uninitialized arvif-ar during beacon miss During beacon miss handling, ath12k driver iterates over active virtual interfaces vifs and attempts to access the radio object ar via arvif-deflink-ar...

5.5CVSS6.5AI score0.00139EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.2 views

CVE-2025-38606

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Avoid accessing uninitialized arvif-ar during beacon miss During beacon miss handling, ath12k driver iterates over active virtual interfaces vifs and attempts to access the radio object ar via arvif-deflink-ar...

5.5CVSS6AI score0.00139EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2025/05/23 4:8 a.m.10 views

CVE-2023-38606

This issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.6.8, iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to modify sensitive kernel state. Apple is aware of a...

5.5CVSS5.6AI score0.01002EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-38606

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: crypto: qat - validate slices count returned by FW The function adfsendadmintlstart enables...

7.1CVSS6.1AI score0.00217EPSS
Exploits0References3
OSV
OSV
added 2024/06/21 5:57 a.m.1 views

BELL-CVE-2024-38606

Bulletin has no description...

7.1CVSS7.2AI score0.00217EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/06/19 1:48 p.m.27 views

CVE-2024-38606

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - validate slices count returned by FW The function adfsendadmintlstart enables the telemetry TL feature on a QAT device by sending the ICPQATFWTLSTART message to the firmware. This triggers the FW to start writing TL...

7.1CVSS6.3AI score0.00217EPSS
Exploits0
The Hacker News
The Hacker News
added 2023/12/28 11:19 a.m.100 views

Most Sophisticated iPhone Hack Ever Exploited Apple's Hidden Hardware Feature

The Operation Triangulation spyware attacks targeting Apple iOS devices leveraged never-before-seen exploits that made it possible to even bypass pivotal hardware-based security protections erected by the company. Russian cybersecurity firm Kaspersky, which discovered the campaign at the beginnin...

8.8CVSS9.8AI score0.51517EPSS
Exploits5
OSV
OSV
added 2023/07/27 12:15 a.m.4 views

CVE-2023-38606

This issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.6.8, iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to modify sensitive kernel state. Apple is aware of a...

5.5CVSS5.7AI score0.01002EPSS
Exploits1References8
NVD
NVD
added 2023/07/27 12:15 a.m.28 views

CVE-2023-38606

This issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.6.8, iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to modify sensitive kernel state. Apple is aware of a...

5.5CVSS4.7AI score0.01002EPSS
Exploits1References8
ATTACKERKB
ATTACKERKB
added 2023/07/27 12:0 a.m.47 views

CVE-2023-38606

This issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.6.8, iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to modify sensitive kernel state. Apple is aware of a...

5.5CVSS6.5AI score0.01002EPSS
In wildExploits1References8
Tenable Nessus
Tenable Nessus
added 2023/07/27 12:0 a.m.65 views

Apple TV < 16.6 Multiple Vulnerabilities (HT213846)

According to its banner, the version of Apple TV on the remote device is prior to 16.6. It is therefore affected by multiple vulnerabilities as described in the HT213846 %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid178942; scriptversion"1.2";...

8.8CVSS7.8AI score0.18185EPSS
Exploits1References14
Vulnrichment
Vulnrichment
added 2023/07/26 11:55 p.m.24 views

CVE-2023-38606

This issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.6.8, iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to modify sensitive kernel state. Apple is aware of a...

5.6AI score0.01002EPSS
Exploits1References7
CVE
CVE
added 2023/07/26 11:55 p.m.762 views

CVE-2023-38606

CVE-2023-38606 affects Apple’s kernel across iOS, iPadOS, macOS, tvOS and watchOS; the issue allows an app to modify a sensitive kernel state. The vulnerability was addressed with updated state management and patches, with fixes in macOS Monterey 12.6.8, iOS 15.7.8/iPadOS 15.7.8, iOS 16.6/iPadOS ...

5.5CVSS5.4AI score0.01002EPSS
In wildExploits1References8Affected Software5
Cvelist
Cvelist
added 2023/07/26 11:55 p.m.39 views

CVE-2023-38606

This issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.6.8, iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to modify sensitive kernel state. Apple is aware of a...

5.9AI score0.01002EPSS
Exploits1References7
Circl
Circl
added 2023/07/25 4:0 a.m.8 views

CVE-2023-38606

creationtimestamp| type| source ---|---|--- 2023-07-25 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1074 2023-07-25 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1075 2023-07-25 05:40:26+00:00| exploited| https://t.me/thehackernews/3639...

5.5CVSS7AI score0.01002EPSS
Exploits1References37
Rows per page
Query Builder