CVE-2018-4302

A null pointer dereference was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13, iCloud for Windows 7.0, watchOS 4, iOS 11, iTunes 12.7 for Windows. Processing maliciously crafted XML may lead to an unexpected application termination or arbitrary code execution...

CVE-2018-4319

A cross-origin issue existed with "iframe" elements. This was addressed with improved tracking of security origins. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7...

CVE-2018-4311

The issue was addressed by removing origin information. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7...

CVE-2022-26724

An authentication issue was addressed with improved state management. This issue is fixed in tvOS 15.5. A local user may be able to enable iCloud Photos without authentication...

CVE-2025-43506

A logic error was addressed with improved error handling. This issue is fixed in macOS Tahoe 26.1. iCloud Private Relay may not activate when more than one user is logged in at the same time...

CVE-2025-43506

A logic error was addressed with improved error handling. This issue is fixed in macOS Tahoe 26.1. iCloud Private Relay may not activate when more than one user is logged in at the same time...

CVE-2025-43506

Summary (CVE-2025-43506) A logic error affecting macOS Tahoe 26.1 related to iCloud Private Relay activation when multiple user accounts are logged in. The issue was resolved in macOS Tahoe 26.1 with improved error handling. The Red Hat and NVD entries corroborate the same vulnerability descripti...

CVE-2025-43506

A logic error was addressed with improved error handling. This issue is fixed in macOS Tahoe 26.1. iCloud Private Relay may not activate when more than one user is logged in at the same time...

EUVD-2025-203139

A logic error was addressed with improved error handling. This issue is fixed in macOS Tahoe 26.1. iCloud Private Relay may not activate when more than one user is logged in at the same time...

CVE-2025-43506

A logic error was addressed with improved error handling. This issue is fixed in macOS Tahoe 26.1. iCloud Private Relay may not activate when more than one user is logged in at the same time...

Apple macOS 安全漏洞

Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A security vulnerability exists in Apple macOS Tahoe versions prior to 26.1, which stems from a mishandled error that could cause iCloud Private Relay to fail to activate when...

PT-2025-51004

Name of the Vulnerable Software and Affected Versions macOS versions prior to 26.1 Description A logic error existed with inadequate error handling. This issue could prevent iCloud Private Relay from activating when multiple user accounts were simultaneously logged in. Recommendations Update to...

Apple’s Bug Bounty Program

Apple is now offering a $2M bounty for a zero-click exploit. According to the Apple website: Today we’re announcing the next major chapter for Apple Security Bounty, featuring the industry’s highest rewards, expanded research categories, and a flag system for researchers to objectively demonstrat...

EUVD-2018-16161

Malware in sbrugna...

EUVD-2016-8482

Malware in sbrugna...

EUVD-2018-15977

Malware in sbrugna...

EUVD-2017-16057

Malware in sbrugna...

EUVD-2017-16136

Malware in sbrugna...

EUVD-2019-18238

Malware in sbrugna...

EUVD-2014-4362

Malware in sbrugna...