Lucene search
+L

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-28697

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.0017EPSS
Exploits0References2
OSV
OSV
added 2025/06/20 10:1 a.m.5 views

CVE-2025-5255 TCC Bypass via Dylib Injection in Phoenix Code

The Phoenix Code's configuration on macOS, specifically the presence of entitlements: "com.apple.security.cs.allow-dyld-environment-variables" and "com.apple.security.cs.disable-library-validation" allows for Dynamic Library Dylib injection. A local attacker with unprivileged access can use...

4.8CVSS6AI score0.00216EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2022/02/19 3:15 a.m.3 views

CVE-2022-25366

Cryptomator through 1.6.5 allows DYLIB injection because, although it has the flag 0x1000 for Hardened Runtime, it has the com.apple.security.cs.disable-library-validation and com.apple.security.cs.allow-dyld-environment-variables entitlements. An attacker can exploit this by creating a malicious...

7.8CVSS7.1AI score0.00556EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/02/19 12:0 a.m.4 views

PT-2022-17244 · Unknown · Cryptomator

Name of the Vulnerable Software and Affected Versions: Cryptomator versions 1.6.5 and earlier Description: The issue allows DYLIB injection because, although it has the flag 0x1000 for Hardened Runtime, it has the com.apple.security.cs.disable-library-validation and...

7.8CVSS7.6AI score0.00556EPSS
Exploits0References6
OSV
OSV
added 2020/11/17 2:15 a.m.2 views

CVE-2020-27192

BinaryNights ForkLift 3.4 was compiled with the com.apple.security.cs.disable-library-validation flag enabled which allowed a local attacker to inject code into ForkLift. This would allow the attacker to run malicious code with escalated privileges through ForkLift's helper tool...

7.8CVSS7.2AI score0.0038EPSS
Exploits1References1
Rows per page
Query Builder