EUVD-2026-18957

Electron: AppleScript injection in app.moveToApplicationsFolder on macOS...

CVE-2025-15246

Aizuda snail-job (macOS) up to version 1.7.0 is affected in the API component by FurySerializer.deserialize, where manipulating the argsStr enables deserialization leading to remote exploitation. The exploit has been publicly disclosed. Remediation: upgrade to a version newer than 1.7.0 (i.e., no...

EUVD-2019-13252

Malware in sbrugna...

EUVD-2007-4681

Malware in sbrugna...

EUVD-2004-0086

Malware in sbrugna...

EUVD-2006-3490

Malware in sbrugna...

EUVD-2025-19237

Malicious code in bioql PyPI...

CVE-2025-5995

Canon EOS Webcam Utility Pro for MAC OS version 2.3d 2.3.29 and earlier contains an improper directory permissions vulnerability. Exploitation of this vulnerability requires administrator access by a malicious user. An attacker could modify the directory, potentially resulting in code execution a...

CVE-2025-5995

Canon EOS Webcam Utility Pro for MAC OS version 2.3d 2.3.29 and earlier contains an improper directory permissions vulnerability. Exploitation of this vulnerability requires administrator access by a malicious user. An attacker could modify the directory, potentially resulting in code execution a...

CVE-2025-5995

CVE-2025-5995 affects Canon EOS Webcam Utility Pro for macOS, with versions 2.3d (2.3.29) and earlier vulnerable due to improper directory permissions. An attacker with administrator privileges could modify the target directory, potentially enabling code execution and privilege escalation. Mitiga...

The vulnerability of MacOS operating systems, related to uncontrolled resource consumption, allows a perpetrator to trigger a service failure.

The vulnerability of MacOS operating systems is related to uncontrolled resource consumption. Exploiting this vulnerability can allow an attacker to cause service failures...

CVE-2024-13177

Netskope Client on Mac OS is impacted by a vulnerability in which the postinstall script does not properly validate the path of the file “nsinstallation”. A standard user could potentially create a symlink of the file “nsinstallation” to escalate the privileges of a different file on the system...

CVE-2020-3432

A vulnerability in the uninstaller component of Cisco AnyConnect Secure Mobility Client for Mac OS could allow an authenticated, local attacker to corrupt the content of any file in the filesystem. The vulnerability is due to the incorrect handling of directory paths. An attacker could exploit th...

PT-2023-8078 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 14.2 Description: The issue is related to multiple memory corruption problems that have been addressed through improved input validation. Processing a maliciously crafted file may lead to unexpected app termination or...

The vulnerability of the XPC CVMServer service on Mac OS operating systems allows attackers to increase their privileges.

The vulnerability of the XPC CVMServer service on Mac OS operating systems is related to the execution of operations outside the buffer boundaries. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of Mac OS operating systems, related to logical errors, allows attackers to circumvent security restrictions.

The vulnerability of Mac OS operating systems arises due to a logical error in the implementation of system configuration settings. Exploiting this vulnerability allows an attacker to bypass security restrictions remotely...

Vim component of the Mac OS system is vulnerable, allowing attackers to exploit their privileges.

The vulnerability of the Vim component in the Mac OS operating system exists due to insufficient checking of input data. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...

CVE-2017-7016

An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "afclip" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted audio file...

CVE-2016-7004

Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors...

The vulnerability of the Mac OS X operating system allows a perpetrator to trigger a service failure or obtain confidential information.

The vulnerability of the Audio component in the Mac OS X operating system is related to errors in calculating the size of audio data. Exploiting this vulnerability can allow a malicious actor to obtain confidential information or cause a service failure memory overflow by using a specially create...