CVE-2026-3062

Out of bounds read and write in Tint in Google Chrome on Mac prior to 145.0.7632.116 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

CVE-2025-11216

Inappropriate implementation in Storage in Google Chrome on Mac prior to 141.0.7390.54 allowed a remote attacker to perform domain spoofing via a crafted video file. Chromium security severity: Low...

Ashlar-Vellum Cobalt Out-of-Bounds Read Vulnerability

Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from an out-of-bounds read...

Microsoft AutoUpdate for Mac 安全漏洞

Microsoft AutoUpdate for Mac is a Microsoft product auto-update application for the Mac platform from Microsoft Corporation USA. A security vulnerability exists in Microsoft AutoUpdate for Mac. An attacker can exploit the vulnerability to elevate privileges...

Apple macOS 安全漏洞

Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS version 13.7, which originates from an application that may be able to bypass privacy preferences...

The vulnerability of Microsoft Teams’ corporate platform for Mac OS, related to improper verification of the cryptographic signature, allows a hacker to circumvent existing security restrictions.

The vulnerability of Microsoft Teams’ corporate platform for Mac OS is related to improper verification of the cryptographic signature. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions by introducing malicious libraries...

SUSE CVE-2013-0886

Google Chrome before 25.0.1364.99 on Mac OS X does not properly implement signal handling for Native Client aka NaCl code, which has unspecified impact and attack vectors...

SUSE CVE-2015-8422

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute...

Microsoft Defender 安全漏洞

Microsoft Defender is a threat protection software from Microsoft USA. A security vulnerability exists in Microsoft Defender for Endpoint. The following products and versions are affected: Microsoft Defender for Endpoint for Mac,Microsoft Defender for Endpoint for Windows for Windows Server 2012 ...

CVE-2020-27518

All versions of Windscribe VPN for Mac and Windows = v2.02.10 contain a local privilege escalation vulnerability in the WindscribeService component. A low privilege user could leverage several openvpn options to execute code as root/SYSTEM...

Microsoft Skype Authorization Issues Vulnerability

Microsoft Skype is a communication application from Microsoft USA. The program provides video calls and voice calls to other devices over the Internet for computers and mobile devices such as cell phones. A security vulnerability exists in Microsoft Skype through 8.59.0.77 on macOS that allows...

Foxit Reader Privilege Access Control Vulnerability

Foxit Reader is a Chinese Foxit Foxit company's a PDF document reader. A privilege access control vulnerability exists in version 3.1.0.0111 of Foxit Reader for the macOS platform. The vulnerability stems from a lack of effective permission and access control measures on a networked system or...

Adobe Digital Editions Heap Buffer Overflow Vulnerability (CNVD-2019-06896)

Adobe Digital Editions DE is a set of e-book reading and management software of the United States Ordoby Adobe. Through the software can open, read and manage PDF, XML, Flash files. Windows, Macintosh and iOS-based platforms, Adobe DE 4.5.8 and previous versions of the heap buffer overflow...

Adobe Digital Editions Heap Buffer Overflow Vulnerability (CNVD-2019-06888)

Adobe Digital Editions DE is a set of e-book reading and management software of the United States Ordoby Adobe. Through the software can open, read and manage PDF, XML, Flash files. Windows, Macintosh and iOS-based platforms, Adobe DE 4.5.8 and previous versions of the heap buffer overflow...

Google Chrome for Mac, Windows and Linux New Tab Page Information Disclosure Vulnerability

Google Chrome for Mac, Windows and Linux is a web browser developed by Google for the Mac, Windows and Linux platforms.New Tab Page is one of the modules used to create new tab pages. A security vulnerability exists in New Tab Page in versions of Google Chrome prior to 64.0.3282.119 for Windows,...

CVE-2016-6987

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-6981...

CVE-2016-4276

Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2016-4274,...

CVE-2016-4211

Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006.30198, and Acrobat and Acrobat Reader DC Continuous before 15.017.20050 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors...

UBUNTU-CVE-2016-4184

Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2016-4172,...

UBUNTU-CVE-2016-1032

Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2016-1012,...