Lucene search
+L

56 matches found

GithubExploit
GithubExploit
added 2025/12/09 11:46 a.m.224 views

Exploit for CVE-2025-9074

CVE-2025-9074: Docker Desktop Container Escape PoC !CVEhtt...

9.3CVSS7.1AI score0.01594EPSS
Exploits15
Cvelist
Cvelist
added 2025/12/01 3:51 p.m.15 views

CVE-2025-8351 Avira antivirus engine heap buffer OOB read when scanning a malformed file

Heap-based Buffer Overflow, Out-of-bounds Read vulnerability in Avira Antivirus engine when scanning a malformed file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before...

7.8CVSS0.00138EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.3 views

Google Chrome < 62.0.3202.75 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 62.0.3202.75. It is, therefore, affected by multiple vulnerabilities as referenced in the 201710stable-channel-update-for-desktop26 advisory. - A stack buffer overflow in V8 in Google Chrome prior to 62.0.3202.75 allowed ...

8.8CVSS8AI score0.02203EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.6 views

Mozilla Firefox ESR < 52.4

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 52.4. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2017-22 advisory. - Mozilla developers and community members Christoph Diehl, Jan de Mooij, Jason Kratzer, Randell Jesup, Tom...

10CVSS8.2AI score0.03641EPSS
Exploits3References10
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.5 views

Mozilla Thunderbird < 115.0.1

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 115.0.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2023-27 advisory. - Thunderbird allowed the Text Direction Override Unicode Character in filenames. An email attachment...

8.8CVSS8.3AI score0.00634EPSS
Exploits0References3
Google Chrome Security Advisories
Google Chrome Security Advisories
added 2025/11/17 12:0 a.m.25 views

Stable Channel Update for Desktop

The Stable channel has been updated to 142.0.7444.175/.176 for Windows and 142.0.7444.176 for Mac and 142.0.7444.175 for Linux, which will roll out over the coming days/weeks. A full list of changes in this build is available in the Log. Security Fixes and Rewards Note: Access to bug details and...

8.8CVSS6.7AI score0.04915EPSS
Exploits1Affected Software1
Cvelist
Cvelist
added 2025/11/04 1:17 a.m.9 views

CVE-2025-43379

This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 26.1 and iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1. An app may be able to access protected user data...

0.00195EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-32292

Malicious code in bioql PyPI...

8.4CVSS6.6AI score0.00583EPSS
Exploits4References4
RedhatCVE
RedhatCVE
added 2025/09/30 12:45 a.m.22 views

CVE-2025-11130

A weakness has been identified in iHongRen pptp-vpn 1.0/1.0.1 on macOS. This issue affects the function shouldAcceptNewConnection of the file HelpTool/HelperTool.m of the component XPC Service. This manipulation causes missing authentication. The attack can only be executed locally. The exploit h...

8.6CVSS6.4AI score0.00228EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/19 12:0 a.m.3 views

Mozilla Thunderbird < 140.3

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 140.3. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-78 advisory. - Memory safety bugs present in Firefox ESR 140.2, Thunderbird ESR 140.2, Firefox 142 and Thunderbird 142...

8.8CVSS7.5AI score0.00687EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2025/08/26 5:2 a.m.2 views

CVE-2025-9474 Mihomo Party Socket sysproxy.ts enableSysProxy temp file

A vulnerability was detected in Mihomo Party up to 1.8.1 on macOS. Affected is the function enableSysProxy of the file src/main/sys/sysproxy.ts of the component Socket Handler. The manipulation results in creation of temporary file with insecure permissions. The attack requires a local approach...

4.5CVSS4.5AI score0.00124EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.7 views

Google Chrome < 139.0.7258.138 Vulnerability

The version of Google Chrome installed on the remote macOS host is prior to 139.0.7258.138. It is, therefore, affected by a vulnerability as referenced in the 202508stable-channel-update-for-desktop19 advisory. - Out of bounds write in V8 in Google Chrome prior to 139.0.7258.138 allowed a remote...

8.8CVSS7.8AI score0.02954EPSS
Exploits0References3
OSV
OSV
added 2024/10/04 1:15 p.m.6 views

CVE-2024-9481

An out-of-bounds write in the engine module in AVG/Avast Antivirus signature 24092400 released on 24/Sep/2024 on MacOS allows a malformed eml file to crash the application during file processing...

5.5CVSS5.8AI score0.00134EPSS
Exploits0References1
OSV
OSV
added 2024/09/10 9:15 a.m.8 views

CVE-2024-8258

Improper Control of Generation of Code 'Code Injection' in Electron Fuses in Logitech Options Plus version 1.60.496306 on macOS allows attackers to execute arbitrary code via insecure Electron Fuses configuration...

7.8CVSS6.2AI score0.04333EPSS
Exploits1References4
OSV
OSV
added 2023/09/13 4:15 p.m.7 views

CVE-2023-4801

An improper certification validation vulnerability in the Insider Threat Management ITM Agent for MacOS could be used by an anonymous actor on an adjacent network to establish a man-in-the-middle position between the agent and the ITM server after the agent has registered. All versions prior to...

7.5CVSS5.8AI score0.00223EPSS
Exploits0References2
OSV
OSV
added 2023/04/24 11:15 a.m.8 views

CVE-2023-25133

Improper privilege management vulnerability in default.cmd file in PowerPanel Business Local/Remote for Windows v4.8.6 and earlier, PowerPanel Business Management for Windows v4.8.6 and earlier, PowerPanel Business Local/Remote for Linux 32bit v4.8.6 and earlier, PowerPanel Business Local/Remote...

9.8CVSS6AI score0.01034EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:58 a.m.3 views

SUSE CVE-2016-6922

Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2016-4274,...

8.8CVSS8AI score0.04434EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 3:26 a.m.5 views

SUSE CVE-2022-27536

Certificate.Verify in crypto/x509 in Go 1.18.x before 1.18.1 can be caused to panic on macOS when presented with certain malformed certificates. This allows a remote TLS server to cause a TLS client to panic...

5.9CVSS8.5AI score0.01424EPSS
Exploits0References5
OSV
OSV
added 2022/11/01 8:15 p.m.7 views

CVE-2022-32947

The issue was addressed with improved memory handling. This issue is fixed in iOS 16.1 and iPadOS 16, macOS Ventura 13, watchOS 9.1. An app may be able to execute arbitrary code with kernel privileges...

7.8CVSS6AI score0.00582EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/08/02 12:0 a.m.8 views

HICOS 缓冲区错误漏洞

HICOS is a tool from China's MOICA that provides IC card credentials for registration into an operating system. A buffer error vulnerability exists in HICOS due to an insufficiently validated parameter length in its citizen authentication component that could be exploited by an unauthenticated...

6.8CVSS7.3AI score0.00355EPSS
Exploits0References2
Rows per page
Query Builder