EUVD-2026-31420

A broken access control vulnerability exists in the TeamViewer DEX Platform On‑Premises prior version 9.2. Certain backend API endpoints do not correctly enforce authorization checks, allowing an authenticated user with low privileges to perform actions and access resources intended only for...

PT-2025-6357 · Adobe · Commerce

Name of the Vulnerable Software and Affected Versions: Adobe Commerce versions 2.4.7-beta1 through 2.4.4-p11 and earlier Description: The issue is related to an Incorrect Authorization vulnerability that could result in a security feature bypass. A low-privileged attacker could exploit this...

PT-2024-5899 · Mozilla +4 · Firefox +4

Name of the Vulnerable Software and Affected Versions: Firefox versions prior to 130 Description: The issue is related to memory safety bugs present in Firefox, which showed evidence of memory corruption. It is presumed that with enough effort, these bugs could be exploited to run arbitrary code,...

PT-2024-25751 · Sourcecodester · Sourcecodester Human Resource Management System

Name of the Vulnerable Software and Affected Versions: Sourcecodester Human Resource Management System version 1.0 Description: The issue is related to Insecure Permissions, which can result in privilege escalation. Recommendations: For Sourcecodester Human Resource Management System version 1.0,...

PT-2023-28622 · Apple · Garageband

Name of the Vulnerable Software and Affected Versions: GarageBand versions prior to 10.4.9 Description: This issue was addressed with improved validation of the process entitlement and Team ID. An app may be able to gain root privileges. The problem was solved by better checking the process...

PT-2023-5723 · Apple · Xnu Kernel +2

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 16.6 iOS versions prior to 16.7.1 iPadOS versions prior to 16.6 iPadOS versions prior to 16.7.1 iOS 17.0.3 and iPadOS 17.0.3 are mentioned as fixed versions, implying that versions prior to these are vulnerable...