Lucene search
K

8 matches found

NVD
NVD
added 2026/05/13 7:16 p.m.14 views

CVE-2026-0236

A code injection vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to its AppleScript interface allowing a locally authenticated non-admin user to leverage this exposed Apple Event handler to send unauthorized commands to the browser...

7.3CVSS0.00144EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.10 views

Palo Alto Networks Prisma Browser 代码注入漏洞

Palo Alto Networks Prisma Browser is an enterprise-level security browser developed by Palo Alto Networks. The Prisma Browser has a code injection vulnerability, which stems from an inability to properly restrict access to the AppleScript interface. This vulnerability may allow unauthorized...

7.3CVSS5.9AI score0.00144EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.14 views

PT-2026-40748

Name of the Vulnerable Software and Affected Versions Prisma Browser on macOS affected versions not specified Description A code injection issue exists where the software fails to properly restrict access to its AppleScript interface. This allows a locally authenticated non-admin user to use an...

7.3CVSS5.9AI score0.00144EPSS
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/24 4:18 a.m.2 views

Malicious code in apple-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6b18eeeb5282535e8959e8e401a02971ab116425fce03d35ba50be1c2db0d6f1 The OpenSSF Package Analysis project identified 'apple-event' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...

6.9AI score
Exploits0
OSV
OSV
added 2025/01/24 4:18 a.m.3 views

MAL-2025-391 Malicious code in apple-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6b18eeeb5282535e8959e8e401a02971ab116425fce03d35ba50be1c2db0d6f1 The OpenSSF Package Analysis project identified 'apple-event' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...

7.1AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/04/12 12:0 a.m.5 views

The vulnerability of Google Chrome browser, related to improper input data validation, allows a malicious actor to execute arbitrary JavaScript code.

The vulnerability of Google Chrome is related to errors in event handling by Apple. Exploiting this vulnerability can allow an attacker to execute JavaScript code...

7.8CVSS7.6AI score0.00336EPSS
Exploits0References3Affected Software2
Wired Threat Level
Wired Threat Level
added 2019/03/22 10:36 p.m.134 views

The Mueller Report Is Here, Apple's Big Event, and More News

Catch up on the most important news today in 2 minutes or less...

1.4AI score
Exploits0
CNVD
CNVD
added 2015/10/03 12:0 a.m.3 views

Apple OS X Apple Event Delivery Vulnerability

Apple OS X is an operating system developed by Apple Inc. Apple OS X Apple Event Filter has a security vulnerability that allows Apple events to be sent to a local user session by a linked user via screen sharing...

6.8CVSS6.4AI score0.0166EPSS
Exploits0References1
Rows per page
Query Builder