CVE-2024-25249

An issue in He3 App for macOS version 2.0.17, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

He3 Security breaches

He3 is a developer toolkit. A security vulnerability exists in He3 version 2.0.17 that originates from allowing remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

CVE-2024-25249

An issue in He3 App for macOS version 2.0.17, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

CVE-2024-25249

An issue in He3 App for macOS version 2.0.17, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

PT-2024-20844 · He3 App · He3 App

Name of the Vulnerable Software and Affected Versions: He3 App for macOS version 2.0.17 Description: An issue in He3 App for macOS allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings. Recommendations: For He3 App for macOS version 2.0.17,...

The vulnerability of the RunAsNode and enableNodeClilnspectArguments components of the software for creating and storing Evernote notes on MacOS allows a hacker to execute arbitrary code.

The vulnerability of the RunAsNode and enableNodeClilnspectArguments components of the software used for creating and storing Evernote notes on MacOS is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute...

The vulnerability of the Setting Handler component in the software for creating, testing, documenting, publishing, and maintaining the API interface of applications allows a perpetrator to execute arbitrary code.

The vulnerability of the Setting Handler component in software for creating, testing, documenting, publishing, and maintaining the API interface of an application relates to the copying of buffers without checking the size of input data when processing PDF files. Exploiting this vulnerability...

Code injection

An issue in Kap for macOS version 3.6.0 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

CVE-2024-23742

An issue in Loom on macOS version 0.196.1 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings. NOTE: the vendor disputes this because it requires local access to a victim's machine...

CVE-2024-23742

An issue in Loom on macOS version 0.196.1 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings. NOTE: the vendor disputes this because it requires local access to a victim's machine...

CVE-2024-23739

An issue in Discord for macOS version 0.0.291 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

CVE-2024-23739

An issue in Discord for macOS version 0.0.291 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

Code injection

An issue in Loom on macOS version 0.196.1 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings. NOTE: the vendor disputes this because it requires local access to a victim's machine...

Crlf injection

An issue in Discord for macOS version 0.0.291 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

CVE-2024-23738

An issue in Postman version 10.22 and before on macOS allows a remote attacker to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings. NOTE: the vendor states "we dispute the report's accuracy ... the configuration does not enable remote code execution.."...

Postman Security Vulnerability

Postman is an API platform for developers from the US-based Postman Inc. A security vulnerability exists in Postman prior to version 10.22, which stems from arbitrary code execution via the RunAsNode and enableNodeClilnspectArguments settings...

Notion Security Breach

Notion is an application from Notion that integrates notes, knowledgebase, datagrid, kanban, calendar, and other capabilities into one application. A security vulnerability exists in Notion prior to version 3.1.0 that stems from arbitrary code execution via the RunAsNode and...

Discord Security Breach

Discord is a free chat service from Discord Inc. A security vulnerability previously existed in Discord version 0.0.291, which stemmed from arbitrary code execution via the RunAsNode and enableNodeClilnspectArguments settings...

CVE-2024-23741

An issue in Hyper on macOS version 3.4.1 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

PT-2024-20049 · Hyper · Hyper

Name of the Vulnerable Software and Affected Versions: Hyper versions 3.4.1 and earlier Description: The issue allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings. Recommendations: For Hyper versions 3.4.1 and earlier, consider disabling...