220 matches found
PT-2025-17307 · Element · Element
Name of the Vulnerable Software and Affected Versions: Element X Android versions prior to 25.04.2 Description: A crafted hyperlink on a webpage or a locally installed malicious app can force Element X to load a webpage with similar permissions to Element Call, automatically granting it temporary...
Element X Android 安全漏洞
Element X Android is an Android Matrix application from Element open source using Matrix Rust Sdk and Jetpack Compose. A security vulnerability exists in Element X Android versions prior to 25.04.2, which stems from a specially crafted hyperlink that could result in automatically granting tempora...
CVE-2024-55950
Tabby (formerly Terminus) prior to version 1.0.216 is affected by a vulnerability caused by overly permissive entitlements that enable dangerous capabilities (camera, microphone, and access to personal folders) through Apple Events, plus entitlements that can permit code injection. The root cause...
Tabby 安全漏洞
Tabby Terminus is a highly configurable terminal emulator, SSH, and serial client for Windows 10, macOS, and Linux from the individual developers at Eugene. A security vulnerability exists in versions prior to Tabby 1.0.216, which stems from overly lax permission settings, including unnecessary...
Cursor 安全漏洞
Cursor is an AI code editor from Cursor Open Source. A security vulnerability exists in versions of Cursor prior to 0.41.0, which stems from the fact that if a user on macOS has granted Cursor access to the camera or microphone, any program running on the machine can access the camera or micropho...
CVE-2024-45599 TCC Bypass in Cursor's macOS Application
Cursor is an artificial intelligence code editor. Prior to version 0.41.0, if a user on macOS has granted Cursor access to the camera or microphone, any program that is run on the machine is able to access the camera or the microphone without explicitly being granted access, through a DyLib...
PT-2024-31700 · Cursor · Cursor
Name of the Vulnerable Software and Affected Versions: Cursor versions prior to 0.41.0 Description: The issue affects Cursor, an artificial intelligence code editor, on macOS. If a user has granted Cursor access to the camera or microphone, any program run on the machine can access these devices...
CVE-2024-27875
A logic issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15. Privacy Indicators for microphone or camera access may be attributed incorrectly...
CVE-2024-27875
A logic issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15. Privacy Indicators for microphone or camera access may be attributed incorrectly...
CVE-2024-27875
A logic issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15. Privacy Indicators for microphone or camera access may be attributed incorrectly...
CVE-2024-27875
A logic issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15. Privacy Indicators for microphone or camera access may be attributed incorrectly...
CVE-2024-27875
CVE-2024-27875 affects macOS Sequoia 15.0 and is described as a logic/state-management issue that can cause Privacy Indicators for microphone or camera access to be attributed incorrectly. The primary sources (NVD/NVD+CNA, Red Hat advisory, Apple security notes) confirm a fix in macOS Sequoia 15 ...
PT-2024-38751 · Logitech · Logitech Options
Name of the Vulnerable Software and Affected Versions: Logitech Options+ versions prior to 1.72 Description: The issue allows a local attacker to inject a dynamic library within the Logitech Options+ runtime and abuse permissions granted by the user, such as access to the Camera. This can lead to...
PT-2024-18769 · Unknown · Factorycamera
Name of the Vulnerable Software and Affected Versions: FactoryCamera versions prior to SMR May-2024 Release 1 Description: The issue is related to improper access control, allowing local attackers to take pictures without the necessary privileges. This could potentially lead to unauthorized acces...
BackDoorSim - An Educational Into Remote Administration Tools
BackdoorSim is a remote administration and monitoring tool designed for educational and testing purposes. It consists of two main components: ControlServer and BackdoorClient. The server controls the client, allowing for various operations like file transfer, system monitoring, and more. Disclaim...
The vulnerability of CoreMedia’s component in the macOS operating system allows a intruder to gain unauthorized access to the camera.
The vulnerability of CoreMedia’s macOS component is related to access control deficiencies. Exploiting this vulnerability could allow an attacker to gain unauthorized access to the camera...
Design/Logic Flaw
A logic issue was addressed with improved checks This issue is fixed in macOS Sonoma 14. A camera extension may be able to access the camera view from apps other than the app for which it was granted permission...
CVE-2023-41994
CVE-2023-41994 affects macOS via a logic issue in CoreMedia where a camera extension may access the camera view from apps other than the one granted permission. The issue is fixed in macOS Sonoma 14. Root cause: insufficient access checks in CoreMedia. Impact: potential exposure of camera view; e...
PT-2023-23118 · Unitreerobotics +1 · A1 +1
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue is related to a lack of authentication, allowing an unauthenticated local user to access cameras through the web server without any form of authentication. Recommendations...
ABUS TVIP Security Vulnerability
ABUS TVIP is a series of video surveillance cameras from the German company ABUS. A security vulnerability exists in ABUS TVIP that stems from incorrect access control, which allows an unauthenticated remote attacker to view the /video.mjpg video stream of certain cameras...