16 matches found
CVE-2025-66005 Lack of Authentication in the InputManager D-Bus interface
Lack of authorization of the InputManager D-Bus interface in InputPlumber versions before v0.63.0 can lead to local Denial-of-Service, information leak or even privilege escalation in the context of the currently active user session...
CVE-2025-66005
InputPlumber’s InputManager D‑Bus interface lacks authorization in versions before v0.63.0, allowing local impact in the active user session: Denial‑of‑Service, information disclosure, or privilege escalation. Affected component: InputPlumber (InputManager D‑Bus). Root cause: missing authorizatio...
CVE-2025-66005
Lack of authorization of the InputManager D-Bus interface in InputPlumber versions before v0.63.0 can lead to local Denial-of-Service, information leak or even privilege escalation in the context of the currently active user session...
CVE-2025-66005 Lack of Authentication in the InputManager D-Bus interface
Lack of authorization of the InputManager D-Bus interface in InputPlumber versions before v0.63.0 can lead to local Denial-of-Service, information leak or even privilege escalation in the context of the currently active user session...
EUVD-2007-0027
Malware in sbrugna...
EUVD-2025-10082
Malicious code in bioql PyPI...
CVE-2025-20941
Improper access control in InputManager to SMR Apr-2025 Release 1 allows local attackers to access the scancode of specific input device...
CVE-2025-20941
InputManager on Samsung SMR Apr-2025 Release 1 is affected by improper access control, allowing a local attacker to access the scancode of a specific input device. The issue is described in PT-2025-15342 and is supported by CVE-2025-20941 records across multiple feeds. There are no exploit detail...
CVE-2025-20941
Improper access control in InputManager to SMR Apr-2025 Release 1 allows local attackers to access the scancode of specific input device...
CVE-2025-20941
Improper access control in InputManager to SMR Apr-2025 Release 1 allows local attackers to access the scancode of specific input device...
PT-2025-15342
Name of the Vulnerable Software and Affected Versions: InputManager version SMR Apr-2025 Release 1 Description: The issue is related to improper access control in InputManager, allowing local attackers to access the scancode of a specific input device. Recommendations: For InputManager version SM...
CVE-2007-0023
The CFUserNotificationSendRequest function in UserNotificationCenter.app in Apple Mac OS X 10.4.8, when used in combination with diskutil, allows local users to gain privileges via a malicious InputManager in Library/InputManagers in a user's home directory, which is executed when Cocoa...
Cross site request forgery (csrf)
The CFUserNotificationSendRequest function in UserNotificationCenter.app in Apple Mac OS X 10.4.8, when used in combination with diskutil, allows local users to gain privileges via a malicious InputManager in Library/InputManagers in a user's home directory, which is executed when Cocoa...
CVE-2007-0023
CVE-2007-0023 affects Apple Mac OS X 10.4.8: the CFUserNotificationSendRequest function in UserNotificationCenter may be exploited when used with diskutil to run a malicious InputManager in a user’s Library/InputManagers, leading to local privilege escalation as Cocoa applications notify users. T...
CVE-2007-0023
The CFUserNotificationSendRequest function in UserNotificationCenter.app in Apple Mac OS X 10.4.8, when used in combination with diskutil, allows local users to gain privileges via a malicious InputManager in Library/InputManagers in a user's home directory, which is executed when Cocoa...
MOAB-22-01-2007: Apple UserNotificationCenter Privilege Escalation Vulnerability
Summary The following description about CFUserNotification is available from Apple's Mac OS X Core Foundation reference: A CFUserNotification object presents a simple dialog on the screen and optionally receives feedback from the user. The contents of the dialog can include a header, a message, a...