32959 matches found
PT-2026-27577
Name of the Vulnerable Software and Affected Versions macOS versions prior to 26.4 Description An authorization issue exists due to improved state management. This could allow an application to access protected user data. Recommendations Update to macOS version 26.4...
PT-2026-27566
Name of the Vulnerable Software and Affected Versions macOS versions prior to Sequoia 15.7.5 macOS versions prior to Sonoma 14.8.5 macOS versions prior to Tahoe 26.4 Description An authorization issue was resolved through improved state management. An application could potentially access sensitiv...
About the security content of macOS Sonoma 14.8.5
About the security content of macOS Sonoma 14.8.5 This document describes the security content of macOS Sonoma 14.8.5. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or release...
PT-2026-27585
Name of the Vulnerable Software and Affected Versions macOS versions prior to 15.7.5 macOS versions prior to 14.8.5 macOS versions prior to 26.4 Description An issue related to the handling of private data in log entries was identified. Specifically, an application could potentially access...
PT-2026-27561
Name of the Vulnerable Software and Affected Versions macOS versions prior to 15.7.5 macOS versions prior to 14.8.5 macOS versions prior to 26.4 Description An issue involving an out-of-bounds write was identified and addressed through improved bounds checking. This flaw could potentially allow a...
PT-2026-27542
Name of the Vulnerable Software and Affected Versions iOS versions prior to 26.4 iPadOS versions prior to 26.4 macOS Sequoia versions prior to 15.7.5 macOS Sonoma versions prior to 14.8.5 macOS Tahoe versions prior to 26.4 visionOS versions prior to 26.4 Description A flaw exists in path handling...
PT-2026-27583
Name of the Vulnerable Software and Affected Versions Safari versions prior to 26.4 iOS versions prior to 26.4 iPadOS versions prior to 26.4 macOS Tahoe versions prior to 26.4 tvOS versions prior to 26.4 visionOS versions prior to 26.4 watchOS versions prior to 26.4 Description A flaw exists due ...
PT-2026-27563
Name of the Vulnerable Software and Affected Versions macOS versions prior to Sequoia 15.7.5 macOS versions prior to Sonoma 14.8.5 macOS versions prior to Tahoe 26.4 Description A flaw exists in how the operating system parses directory paths, potentially allowing an application to escape its...
Google Chrome < 146.0.7680.164 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 146.0.7680.164. It is, therefore, affected by multiple vulnerabilities as referenced in the 202603stable-channel-update-for-desktop23 advisory. - Use after free in FedCM in Google Chrome prior to 146.0.7680.165 allowed a...
📄 Cursor IDE MCP Deeplink Remote Code Execution
This Metasploit module exploits the MCP deeplink functionality in Cursor IDE through social engineering. The cursor:// protocol handler can be abused when a user accepts an installation prompt, leading to arbitrary command execution...
SUSE CVE-2026-4453
Integer overflow in Dawn in Google Chrome on Mac prior to 146.0.7680.153 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...
[SECURITY] Fedora 42 Update: uxplay-1.73.3-1.fc42
An AirPlay2 Mirror and AirPlay2 Audio but not Video server that provides screen-mirroring with audio of iOS/MacOS clients in a display window on the server host which can be shared using a screen-sharing application; Apple Lossless Audio ALAC e.g.,iTunes can be streamed from client to server in...
CVE-2026-32810
Halloy is an IRC application written in Rust. In versions on \nix and macOS prior to commit f180e41061db393acf65bc99f5c5e7397586d9cb, halloy creates its config directory and files using default umask permissions, which typically results in 0644 on files and 0755 on directories. This allows any...
CVE-2026-32810 Halloy has insecure file permissions on credential files
Halloy is an IRC application written in Rust. In versions on \nix and macOS prior to commit f180e41061db393acf65bc99f5c5e7397586d9cb, halloy creates its config directory and files using default umask permissions, which typically results in 0644 on files and 0755 on directories. This allows any...
SUSE CVE-2025-43214
The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6, watchOS 11.6. Processing maliciously crafted web content may lead to an unexpected Safari crash...
SUSE CVE-2025-43438
A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.1, iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, visionOS 26.1, watchOS 26.1. Processing maliciously crafted web content may lead to an unexpected Safari crash...
SUSE CVE-2025-43457
A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.1, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, visionOS 26.1, watchOS 26.1. Processing maliciously crafted web content may lead to an unexpected Safari crash...
SUSE CVE-2026-20635
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. Processing maliciously crafted web content may lead to an unexpected process crash...
SUSE CVE-2026-20652
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. A remote attacker may be able to cause a denial-of-service...
Google Chrome < 146.0.7680.153 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 146.0.7680.153. It is, therefore, affected by multiple vulnerabilities as referenced in the 202603stable-channel-update-for-desktop18 advisory. - Use after free in Extensions in Google Chrome prior to 146.0.7680.153 allow...