CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

147 matches found

Packet Storm News•added 2026/02/25 12:0 a.m.•3 views

HDF5 Plugin 2.17.0 Path Audit

This script demonstrates a controlled security audit scenario targeting the HDF5 dynamic plugin loading mechanism. It compiles a shared C library that mimics a legitimate HDF5 filter plugin by implementing the required H5Zclass2t structure and registration functions H5PLgetplugintype,...

5.9AI score

Exploits0

Tenable Nessus•added 2026/01/07 12:0 a.m.•3 views

Mattermost Desktop < 6.0.0 (macOS) (MMSA-2025-00504)

The version of Mattermost Desktop installed on the remote host is prior to 6.0.0. It is, therefore, affected by a vulnerability as referenced in the MMSA-2025-00504 advisory: - Mattermost Desktop App versions 6.0.0 fail to enable the Hardened Runtime on the Mattermost Desktop App when packaged fo...

3.9CVSS5.8AI score0.00011EPSS

Exploits0References2

RedhatCVE•added 2025/12/19 3:16 p.m.•2 views

CVE-2025-64723

Arduino IDE is an integrated development environment. Prior to version 2.3.7, Arduino IDE for macOS was configured with overly permissive security entitlements that could bypass macOS Hardened Runtime protections. This configuration allows attackers to inject malicious dynamic libraries into the...

4.8CVSS6.7AI score0.00013EPSS

Exploits0References1

RedhatCVE•added 2025/12/18 6:46 p.m.•6 views

CVE-2025-13326

Mattermost Desktop App versions 6.0.0 fail to enable the Hardened Runtime on the Mattermost Desktop App when packaged for Mac App Store which allows an attacker to inherit TCC permissions via copying the binary to a tmp folder...

3.9CVSS6.9AI score0.00011EPSS

Exploits0References1

OSV•added 2025/12/18 3:15 p.m.•4 views

CVE-2025-64723 Arduino IDE for macOS has TCC Bypass via Dynamic Library Injection

4.8CVSS6.6AI score0.00013EPSS

Exploits0References7

Vulnrichment•added 2025/12/18 3:15 p.m.•2 views

CVE-2025-64723 Arduino IDE for macOS has TCC Bypass via Dynamic Library Injection

4.8CVSS6.3AI score0.00013EPSS

Exploits0References5

Cvelist•added 2025/12/18 3:15 p.m.•21 views

CVE-2025-64723 Arduino IDE for macOS has TCC Bypass via Dynamic Library Injection

4.8CVSS0.00013EPSS

Exploits0References5

CVE•added 2025/12/18 3:15 p.m.•6 views

CVE-2025-64723

Summary: Arduino IDE for macOS prior to 2.3.7 had overly permissive security entitlements that could bypass the macOS Hardened Runtime protections, enabling an attacker to inject malicious dynamic libraries into the process and access all TCC permissions granted to the app. Impact (as stated): by...

4.8CVSS6.3AI score0.00013EPSS

Exploits0References5Affected Software1

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52244

Name of the Vulnerable Software and Affected Versions Arduino IDE versions prior to 2.3.7 Description Arduino IDE for macOS, before version 2.3.7, had overly permissive security entitlements. This configuration bypassed macOS Hardened Runtime protections, allowing attackers to inject malicious...

4.8CVSS6.6AI score0.00013EPSS

Exploits0References7

EUVD•added 2025/12/17 9:30 p.m.•1 views

EUVD-2025-203922

3.9CVSS6.3AI score0.00011EPSS

Exploits0References2

NVD•added 2025/12/17 7:16 p.m.•1 views

CVE-2025-13326

3.9CVSS0.00011EPSS

Exploits0References1

OSV•added 2025/12/17 7:16 p.m.•2 views

CVE-2025-13326

3.9CVSS6.8AI score

Exploits0References1

CVE•added 2025/12/17 6:14 p.m.•5 views

CVE-2025-13326

CVE-2025-13326 affects Mattermost Desktop App on macOS versions prior to 6.0.0, failing to enable the Hardened Runtime in Mac App Store builds. This allows an attacker to inherit TCC permissions by copying the binary to a temporary folder. Affected component is the Mattermost Desktop App binary; ...

3.9CVSS6.5AI score0.00011EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/12/17 6:14 p.m.•25 views

CVE-2025-13326 Mattermost Desktop App fails to enable Hardened Runtime when packaged for Mac App Store

3.9CVSS0.00011EPSS

Exploits0References1

Vulnrichment•added 2025/12/17 6:14 p.m.•1 views

CVE-2025-13326 Mattermost Desktop App fails to enable Hardened Runtime when packaged for Mac App Store

3.9CVSS6.5AI score0.00011EPSS

Exploits0References1

Positive Technologies•added 2025/12/17 12:0 a.m.•5 views

PT-2025-51855

3.9CVSS6.9AI score0.00011EPSS

Exploits0References2

CNNVD•added 2025/12/17 12:0 a.m.•2 views

Mattermost Desktop App 安全漏洞

Mattermost Desktop App is a messaging desktop application from Mattermost USA. A security vulnerability exists in Mattermost Desktop App versions prior to 6.0.0, which stems from the failure to enable the hardened runtime when packaging for the Mac App Store, and could result in inheriting TCC...

3.9CVSS6.6AI score0.00011EPSS

Exploits0References1

RedhatCVE•added 2025/12/05 3:27 p.m.•2 views

CVE-2025-62686

A local privilege escalation vulnerability exists in the Plugin Alliance InstallationHelper service included with Plugin Alliance Installation Manager v1.4.0 on macOS. Due to the absence of a hardened runtime and a RESTRICT segment, a local user may exploit the DYLDINSERTLIBRARIES environment...

6.2CVSS7.5AI score0.00019EPSS

Exploits1References1

Positive Technologies•added 2025/12/03 12:0 a.m.•1 views

PT-2025-48949

6.2CVSS7.5AI score0.00019EPSS

Exploits1References2

Vulnrichment•added 2025/12/03 12:0 a.m.•1 views

CVE-2025-62686

7.2AI score0.00019EPSS

Exploits1References1

Rows per page