DEBIAN-CVE-2026-11175

Incorrect security UI in Messages in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

PT-2026-46690

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 149.0.7827.53 Description A use after free issue in Messages allows a remote attacker to potentially perform a sandbox escape by using a crafted HTML page. Use after free is a memory corruption flaw...

CVE-2020-3874

An issued existed in the naming of screenshots. The issue was corrected with improved naming. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. Screenshots of the Messages app may reveal additional message content...

CVE-2018-9461

In onAttachFragment of ShareIntentActivity.java, there is a possible way for an app to read files in the messages app due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

Apple macOS 安全漏洞

Apple macOS is a proprietary operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS version 15.3, which originated when deleting a conversation in Messages may expose user contact information in system logs...

CVE-2018-9461

In onAttachFragment of ShareIntentActivity.java, there is a possible way for an app to read files in the messages app due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

PT-2024-22042 · Apple · Macos Monterey +8

Name of the Vulnerable Software and Affected Versions: macOS Ventura versions 13.6.7 and earlier macOS Monterey versions 12.7.5 and earlier iOS versions 16.7.8 and earlier, 17.5 and earlier iPadOS versions 16.7.8 and earlier, 17.5 and earlier tvOS version 17.5 and earlier visionOS version 1.2 and...

CVE-2020-20095

CVE-2020-20095 affects iMessage (Messages app) on iOS 12.4 and earlier, where the user interface fails to correctly render URI messages, enabling URI spoofing via specially crafted messages. The vulnerability relates to how the app presents links, potentially misleading users about the actual des...

Last Week’s Security News: Black Hat Pwnie Awards, iPhone Checks Photos, Evil Windows Print Server, Cisco VPN Routers Takeovers

Hello everyone! Last Weeks Security News, August 1 - August 8. Black Hat Pwnie Awards Last week was more quiet than normal with Black Hat USA and DEF CON security conferences. I would like to start with the Pwnie Awards, which are held annually at Black Hat. Its like an Oscar or Tony in the...

Cybozu Garoon Cross-Site Scripting Vulnerability (CNVD-2020-26661)

Cybozu Garoon is a portal-type OA office system from Cybozu Japan. The system provides portal, e-mail, bookmarks, scheduling, bulletin board, document management, and other functions. A cross-site scripting vulnerability exists in Cybozu Garoon versions 4.0.0 through 4.10.3. A remote attacker can...

CVE-2020-3874

An issued existed in the naming of screenshots. The issue was corrected with improved naming. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. Screenshots of the Messages app may reveal additional message content...

CVE-2020-3874

An issued existed in the naming of screenshots. The issue was corrected with improved naming. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. Screenshots of the Messages app may reveal additional message content...

CVE-2020-3874

The CVE-2020-3874 entry concerns an issue in the naming of Screenshots within Messages on iOS/iPadOS. According to the Apple security content, an issue allowed Screenshots to reveal additional message content, and this was fixed in iOS 13.3.1 / iPadOS 13.3.1. The core problem is described as a mi...

Apple iOS Messages UI Spoofing Vulnerability (CNVD-2018-26504)

Apple iOS is an operating system for mobile devices developed by Apple Inc. Messages is a component of the application used to send text, photos and videos. A security vulnerability exists in the Messages component in Apple iOS versions prior to 12.1. The vulnerability can be exploited by an...

Apple Siri is the aeration privacy vulnerability: lock screen notifications directly read-vulnerability warning-the black bar safety net

! iOS 11, Apple introduced a new way to protect user privacy, the user through the iPhone's lock screen hide notification content, until the use of Touch ID or Face ID to unlock the device. But in fact, even if unable to unlock the phone, or is there a very simple way to read these hidden...

Apple iOS Security Restriction Bypass Vulnerability (CNVD-2016-07698)

Apple iOS is an operating system for mobile devices developed by Apple Inc. Messages is a component of the application used to send text, photos and videos. A security restriction bypass vulnerability exists in Messages in versions of Apple iOS prior to 10. An attacker could use this vulnerabilit...

This Simple Text Message Can Crash and Reboot Your iPhone

A newly discovered bug in Apple's iOS mobile operating system has emerged this evening that lets iPhone users crash another user’s iPhone by just sending a tiny string of text characters in a message. The bug is related to the Messages app and the notification system used by iPhone and iPad devic...