8 matches found
CVE-2025-1398
Mattermost Desktop App versions =5.10.0 explicitly declared unnecessary macOS entitlements which allows an attacker with remote access to bypass Transparency, Consent, and Control TCC via code injection...
EUVD-2025-6524
Malicious code in bioql PyPI...
CVE-2025-5963
The Postbox's configuration on macOS, specifically the presence of entitlements: "com.apple.security.cs.allow-dyld-environment-variables" and "com.apple.security.cs.disable-library-validation" allows for Dynamic Library Dylib injection. A local attacker with unprivileged access can use environmen...
Mattermost Desktop App allows the bypass of Transparency, Consent, and Control (TCC) via code injection
Mattermost Desktop App versions =5.10.0 explicitly declared unnecessary macOS entitlements which allows an attacker with remote access to bypass Transparency, Consent, and Control TCC via code injection...
GHSA-XMVV-W44W-J8WX Mattermost Desktop App allows the bypass of Transparency, Consent, and Control (TCC) via code injection
Mattermost Desktop App versions =5.10.0 explicitly declared unnecessary macOS entitlements which allows an attacker with remote access to bypass Transparency, Consent, and Control TCC via code injection...
CVE-2025-1398
Mattermost Desktop App versions =5.10.0 explicitly declared unnecessary macOS entitlements which allows an attacker with remote access to bypass Transparency, Consent, and Control TCC via code injection...
CVE-2025-1398
Mattermost Desktop App (Mac) versions
CVE-2025-1398 macOS TCC Bypass via Code Injection
Mattermost Desktop App versions =5.10.0 explicitly declared unnecessary macOS entitlements which allows an attacker with remote access to bypass Transparency, Consent, and Control TCC via code injection...