129 matches found
iOS Workspace App 2501.10 - How to Fix Login Hang at "Stay Signed In" Prompt
Users of the Citrix Workspace app on iOS devices may experience a hang or freeze at the "Stay Signed In" prompt after adding their Citrix Cloud workspace URL. The app becomes unresponsive, preventing users from selecting either "Allow" or "Deny."...
Exploit for Integer Overflow or Wraparound in Apple Ipados
Trigon Trigon is a deterministic kernel exploit based on CVE-...
DEBIAN-CVE-2025-21742
In the Linux kernel, the following vulnerability has been resolved: usbnet: ipheth: use static NDP16 location in URB Original code allowed for the start of NDP16 to be anywhere within the URB based on the wNdpIndex value in NTH16. Only the start position of NDP16 was checked, so it was possible f...
CVE-2025-21742 usbnet: ipheth: use static NDP16 location in URB
In the Linux kernel, the following vulnerability has been resolved: usbnet: ipheth: use static NDP16 location in URB Original code allowed for the start of NDP16 to be anywhere within the URB based on the wNdpIndex value in NTH16. Only the start position of NDP16 was checked, so it was possible f...
PT-2025-6151 · Meta · Imessenger
Name of the Vulnerable Software and Affected Versions: WP SEO Plugin affected versions not specified Description: The issue concerns a SQL injection in the WP SEO Plugin. There is also mention of a Denial of Service DoS vulnerability affecting Messenger Group Calls on iOS devices. Recommendations...
XenMobile 10 Logs Collection Guide
This article illustrates the log collection process on devices such as iOS, Android and Windows Phone for the various XenMobile components including - App Controller, NetScaler Gateway, XenMobile Device Manager and Citrix Secure Hub. For the latest information on logcollection process refer to...
FreeBSD : Gitlab -- Vulnerabilities (92cd1c03-2940-11ef-bc02-001b217b3468)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 92cd1c03-2940-11ef-bc02-001b217b3468 advisory. Gitlab reports: ReDoS in gomod dependency linker ReDoS in CI interpolation fix bypass ReDoS in...
Mozilla Focus for iOS Code Execution Vulnerability
Mozilla Focus is a browser for iOS devices from the Mozilla Foundation. A code execution vulnerability exists in Mozilla Focus for iOS due to a race condition when using a javascript:URI with setTimeout. An attacker can exploit the vulnerability to execute arbitrary code on the system...
Kaspersky’s iShutdown Tool Detects Pegasus Spyware on iOS Devices
By Waqas Kaspersky has recently launched a tool called iShutdown, designed not only to detect the notorious Pegasus spyware but also to identify other malware threats on iOS devices. This is a post from HackRead.com Read the original post: Kasperskys iShutdown Tool Detects Pegasus Spyware on iOS...
Alert: Chinese-Speaking Hackers Pose as UAE Authority in Latest Smishing Wave
The Chinese-speaking threat actors behind Smishing Triad have been observed masquerading as the United Arab Emirates Federal Authority for Identity and Citizenship to send malicious SMS messages with the ultimate goal of gathering sensitive information from residents and foreigners in the country...
The reality of Apple watch pen testing
Introduction We were approached to do an Apple Watch application test. It seems this isnt a service offered by many companies including us, although we’ve done plenty of work on Android Wear before but also, little information exists online about attempts, experiences or if it’s even possible. So...
The vulnerability of the FontParser component in operating systems such as iPadOS, watchOS, iOS, tvOS, and Mac OS allows a hacker to execute arbitrary code.
The vulnerability of the FontParser component in iPadOS, watchOS, iOS, tvOS, and Mac OS operating systems is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
New Report Exposes Operation Triangulation's Spyware Implant Targeting iOS Devices
More details have emerged about the spyware implant that's delivered to iOS devices as part of a campaign called Operation Triangulation. Kaspersky, which discovered the operation after becoming one of the targets at the start of the year, said the malware has a lifespan of 30 days, after which i...
Dissecting TriangleDB, a Triangulation spyware implant
Over the years, there have been multiple cases when iOS devices were infected with targeted spyware such as Pegasus, Predator, Reign and others. Often, the process of infecting a device involves launching a chain of different exploits, e.g. for escaping the iMessage sandbox while processing a...
CVE-2023-20080
A vulnerability in the IPv6 DHCP version 6 DHCPv6 relay and server features of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to trigger a denial of service DoS condition. This vulnerability is due to insufficient validation of data boundaries. An attacker could...
Update Now: iOS Devices Receive Vital Security Updates from Apple
By Deeba Ahmed If you are using an Apple product, it is time to update it right now and make sure the automatic updates are enabled. This is a post from HackRead.com Read the original post: Update Now: iOS Devices Receive Vital Security Updates from Apple...
SUSE CVE-2018-4125
An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit"...
SUSE CVE-2018-4161
An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit"...
VASTFLUX ad fraud massively affected millions of iOS devices, dismantled
Researchers have successfully dismantled a massive ad fraud campaign they stumbled upon by accident. The Satori Threat Intelligence and Research Team dubbed the campaign VASTFLUX, a portmanteau of "fast flux"--an evasion technique involving the constant changing of IP addresses behind a single...
XenMobile Sever - iOS Devices failing to deploy apps and policies - TOPIC MISMATCH Error
Devices not getting latest changes, and on the XMS Console we see the device information is not up to date last login, OS version, App Inventory On the logs see entries like: TOPIC MISMATCH errors 2021-10-04T16:03:42.153-0600 | Basic XXXXXXXXX| WARN | http-nio-10443-exec-3752 |...