32960 matches found
Apple macOS out-of-bounds read vulnerability (CNVD-2026-14975)
Apple macOS is a specialized operating system developed by Apple for Mac computers. An out-of-bounds read vulnerability exists in Apple macOS, which can be exploited by an attacker to cause the system to unexpectedly terminate or read kernel memory...
Security Bypass Vulnerability in Multiple Apple Products (CNVD-2026-14479)
Apple iOS is an operating system developed for mobile devices.Apple macOS is a specialized operating system developed for Mac computers.Apple iPadOS is an operating system for iPad tablets. A security bypass vulnerability exists in multiple Apple products, which is caused by a permissions issue i...
Apple macOS Information Disclosure Vulnerability (CNVD-2026-14974)
Apple macOS is a specialized operating system developed by Apple for Mac computers. Apple macOS has an information disclosure vulnerability that can be exploited by attackers to access sensitive user data...
Denial of Service Vulnerability in Multiple Apple Products (CNVD-2026-14272)
Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for iPad tablets.Apple macOS Sequoia is an operating system.... A denial-of-service vulnerability exists in multiple Apple products, which can be exploited by an attacker to cause a malicious HID...
PT-2026-26233
Summary In the macOS companion app currently beta, a parsing mismatch in exec approvals could let shell-chain payloads pass allowlist checks in system.run under specific settings. Impact This path requires all of the following: - authenticated caller with operator.write - paired macOS beta node...
Apple macOS Tahoe Information Disclosure Vulnerability (CNVD-2026-14994)
Apple macOS Tahoe is an operating system from the American company Apple. Apple macOS Tahoe suffers from an information disclosure vulnerability that can be exploited by attackers to cause an application to access protected user data...
Denial of Service Vulnerability in Multiple Apple Products (CNVD-2026-14482)
Apple iOS is an operating system developed for mobile devices.Apple macOS is a specialized operating system developed for Mac computers.Apple iPadOS is an operating system for iPad tablets. A denial of service vulnerability exists in multiple Apple products due to an error in the WebKit component...
Apple macOS Tahoe Information Disclosure Vulnerability (CNVD-2026-14995)
Apple macOS Tahoe is an operating system from the American company Apple. Apple macOS Tahoe suffers from an information disclosure vulnerability that can be exploited by attackers to access sensitive user data...
Multiple Apple Products Information Disclosure Vulnerability (CNVD-2026-14478)
Apple watchOS is a smartwatch operating system. apple macOS is a dedicated operating system developed for Mac computers. apple visionOS is an operating system for AR glasses. An information disclosure vulnerability exists in multiple Apple products and is caused due to an issue with the handling ...
Denial of Service Vulnerability in Multiple Apple Products (CNVD-2026-14273)
Apple iOS is an operating system developed for mobile devices.Apple macOS is a specialized operating system developed for Mac computers.Apple iPadOS is an operating system for iPad tablets. A denial-of-service vulnerability exists in several Apple products, which can be exploited by attackers to...
Multiple Apple Products Information Disclosure Vulnerability (CNVD-2026-14480)
AApple tvOS is a smart TV operating system. apple watchOS is a smart watch operating system. apple macOS is a specialized operating system developed for Mac computers. An information disclosure vulnerability exists in multiple Apple products.The vulnerability is caused due to an error in the...
SUSE-SU-2026:0687-1 Security update for go1
This update for go1 fixes the following issues: Update to version 1.24.13 jscSLE-18320, bsc1236217. Security issues fixed: - CVE-2025-61732: cmd/cgo: discrepancy between Go and C/C++ comment parsing allows for C code smuggling bsc1257692. - CVE-2025-68119: cmd/go: unexpected code execution when...
Exploit for CVE-2010-2568
Zero Click Exploits Android, OSX, Linux, Windows, iOS, IoT, S...
Exploit for Command Injection in Microsoft
🛡️ CVE-2026-20841-PoC - Simple Proof of Concept Tool !Downl...
CVE-2026-3102
A vulnerability was determined in exiftool up to 13.49 on macOS. This issue affects the function SetMacOSTags of the file lib/Image/ExifTool/MacOS.pm of the component PNG File Parser. This manipulation of the argument DateTimeOriginal causes os command injection. The attack is possible to be...
EUVD-2026-8471
A vulnerability was determined in exiftool up to 13.49 on macOS. This issue affects the function SetMacOSTags of the file lib/Image/ExifTool/MacOS.pm of the component PNG File Parser. This manipulation of the argument DateTimeOriginal causes os command injection. The attack is possible to be...
CVE-2026-3102
A vulnerability was determined in exiftool up to 13.49 on macOS. This issue affects the function SetMacOSTags of the file lib/Image/ExifTool/MacOS.pm of the component PNG File Parser. This manipulation of the argument DateTimeOriginal causes os command injection. The attack is possible to be...
Mozilla Firefox ESR < 115.33
The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 115.33. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2026-14 advisory. - Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147...
Google Chrome < 145.0.7632.116 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 145.0.7632.116. It is, therefore, affected by multiple vulnerabilities as referenced in the 202602stable-channel-update-for-desktop23 advisory. - Inappropriate implementation in DevTools in Google Chrome prior to...
OpenClaw 2026.2.6 < 2026.2.14 Deep Link Message Truncation (macOS) (GHSA-7q2j-c4q5-rm27)
The version of the OpenClaw AI assistant installed on the remote macOS host is 2026.2.6 or later but prior to 2026.2.14. It is, therefore, affected by a remote code execution vulnerability: - The OpenClaw macOS desktop client registers the openclaw:// URL scheme. For openclaw://agent deep links...