33 matches found
PT-2026-56068
Name of the Vulnerable Software and Affected Versions Coder versions 2.17.0 through 2.29.6 Coder versions 2.32.0 through 2.32.6 Coder versions 2.33.0 through 2.33.7 Coder versions 2.34.0 through 2.34.1 Description The POST /api/v2/files endpoint converts zip uploads to tar in memory using the...
Arbitrary Code Injection
Overview n8n is a n8n Workflow Automation Tool Affected versions of this package are vulnerable to Arbitrary Code Injection via the Merge node's Combine by SQL mode. An authenticated user with permissions to create or modify workflows can execute arbitrary code and access sensitive files on the...
PT-2026-27568
Name of the Vulnerable Software and Affected Versions iOS versions prior to 26.4 iPadOS versions prior to 26.4 macOS versions prior to Tahoe 26.4 visionOS versions prior to 26.4 Description An issue involving insufficient permissions was resolved through the implementation of additional...
Cross-site Scripting (XSS)
Overview n8n-core is a Core functionality of n8n Affected versions of this package are vulnerable to Cross-site Scripting XSS due to improper enforcement of Content Security Policy in webhook response handling. An attacker can execute unauthorized scripts with same-origin privileges by crafting...
PT-2025-51017
CVE-2025-43523 A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.7.3. An app may be able to access sensitive user data. https://t.co/gGS83lscq6...
PT-2025-13979 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.7.5 macOS versions prior to 14.7.5 macOS versions prior to 15.4 Description: A permissions issue was addressed with additional restrictions. This issue allows an app to potentially gain root privileges...
macOS 12.x < 12.7.4 Multiple Vulnerabilities (120884)
The remote host is running a version of macOS / Mac OS X that is 12.x prior to 12.7.4. It is, therefore, affected by multiple vulnerabilities: - The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4, macOS Ventura 13.6.5, macOS Monterey 12.7.4. An app may be able ...
macOS 13.x < 13.6.5 Multiple Vulnerabilities (120886)
The remote host is running a version of macOS / Mac OS X that is 13.x prior to 13.6.5. It is, therefore, affected by multiple vulnerabilities: - The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4, macOS Ventura 13.6.5, macOS Monterey 12.7.4. An app may be able ...
CVE-2024-44123
A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15. A malicious app with root privileges may be able to access keyboard input and location information without user consent...
CVE-2024-47766
Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap Community Edition 15.13.99.110, Tuleap Enterprise Edition 15.13-5, and Tuleap Enterprise Edition 15.12-5, administrators of a project can access the content of trackers with permissions restrictio...
CVE-2024-40831
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access a user's Photos Library...
CVE-2024-40837
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access protected user data...
CVE-2024-40837
CVE-2024-40837 describes a local-permission issue where an app could access protected user data. The connected documents confirm the vulnerability is addressed in macOS Sequoia 15, providing the fix as part of the OS update. No exploit details, affected product scope beyond macOS Sequoia 15, or a...
CVE-2024-27858
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access protected user data...
CVE-2024-40831
CVE-2024-40831 is a macOS Sequoia 15–only issue: a permissions flaw could allow an app to access a user’s Photos Library. Apple patched this in macOS Sequoia 15 (and related advisories confirm the risk was addressed with additional restrictions). The available documents consistently describe the ...
CVE-2024-44184
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.7, iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sonoma 14.7, macOS Sequoia 15. An app may be able to access user-sensitive data...
CVE-2023-42958
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.4. An app may be able to gain elevated privileges...
CVE-2023-42957
A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10. An app may be able to read sensitive location information...
CVE-2023-42958
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.4. An app may be able to gain elevated privileges...
CVE-2023-42958
CVE-2023-42958 corresponds to a permissions issue in macOS that could allow an app to gain elevated privileges. The connected sources indicate the vulnerability is fixed in macOS Ventura 13.4. The primary public descriptor is: “A permissions issue was addressed with additional restrictions. This ...