17 matches found
CVE-2026-41163
A flaw was found in bubblewrap when operating in setuid mode. A local user may use ptrace to interfere with the sandbox setup process and gain access to privileged operations that are normally restricted. This could allow an attacker to bypass intended sandboxing restrictions and potentially...
Unspecified Vulnerability in Apple macOS (CNVD-2026-19677)
Apple macOS is a specialized operating system developed by Apple for Mac computers. Apple macOS has a security vulnerability that can be exploited by an attacker to cause a sandboxed process to bypass sandboxing restrictions...
Unspecified Vulnerability in Apple macOS (CNVD-2025-22272)
Apple macOS is a specialized operating system developed by Apple for Mac computers. Apple macOS has a security vulnerability that can be exploited by an attacker to cause an application to break through sandboxing restrictions...
Apple macOS 安全漏洞
Apple macOS is a specialized operating system developed by Apple for Mac computers. Apple macOS has a security vulnerability that can be exploited by an attacker to cause an application to break through sandboxing restrictions...
Eclipse Open VSX 安全漏洞
Eclipse Open VSX is an open source registry of code extensions for Eclipse Open Source. A security vulnerability exists in Eclipse Open VSX that stems from a lack of sandboxing restrictions for CI jobs, which could lead to a service account takeover...
Apple macOS 安全漏洞
Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS version 13.7.1, which stems from a sandboxed process that may be able to circumvent sandboxing restrictions...
Apple macOS 安全漏洞
Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS versions prior to Sonoma 14, which stems from a sandboxed process that may be able to bypass sandboxing restrictions...
CVE-2023-42887
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Ventura 13.6.4, macOS Sonoma 14.2. An app may be able to read arbitrary files...
Apple macOS Monterey 安全漏洞
Apple macOS Monterey is the 18th major release of Apple's macOS for the Macintosh desktop operating system. A security vulnerability exists in Apple macOS Monterey version 12.4 that stems from a sandboxed process that can bypass sandboxing restrictions...
Memory Corruption Vulnerability in WebKit Component of Multiple Apple Products (CNVD-2020-01907)
Apple Safari is a web browser that is the default browser that comes with the MacOSX and iOS operating systems. apple iOS is a suite of operating systems for mobile devices. apple macOS Mojave is a dedicated operating system developed specifically for Mac computers. WebKit is a component of the W...
Arbitrary File Overwrite
libarchive.so is vulnerable to arbitrary file overwrite attacks. The vulnerability exists as sandboxing restrictions can be evaded through hard links with data, causing file overwrites...
Arbitrary File Overwrite
libarchive.so is vulnerable to arbitrary file overwrite attacks. The vulnerability exists as sandboxing restrictions can be evaded through hard links with data, causing file overwrites...
CVE-2017-1000107
Script Security Plugin did not apply sandboxing restrictions to constructor invocations via positional arguments list, super constructor invocations, method references, and type coercion expressions. This could be used to invoke arbitrary constructors and methods, bypassing sandbox protection...
CVE-2017-1000107
CVE-2017-1000107 affects the Jenkins Script Security Plugin. The root cause is that sandboxing restrictions were not applied to constructor invocations via positional argument lists, super constructors, method references, or type coercion expressions, allowing potential bypass of sandbox protecti...
CVE-2017-1000107
Script Security Plugin did not apply sandboxing restrictions to constructor invocations via positional arguments list, super constructor invocations, method references, and type coercion expressions. This could be used to invoke arbitrary constructors and methods, bypassing sandbox protection...
Debian Security Advisory DSA 3677-1 (libarchive - security update)
Several vulnerabilities were discovered in libarchive, a multi-format archive and compression library, which may lead to denial of service memory consumption and application crash, bypass of sandboxing restrictions and overwrite arbitrary files with arbitrary data from an archive, or the executio...
DSA-3677-1 libarchive - security update
Bulletin has no description...