CVE-2023-50643

An issue in Evernote Evernote for MacOS v.10.68.2 allows a remote attacker to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments components...

EUVD-2017-16160

Malware in sbrugna...

EUVD-2018-7539

Malware in sbrugna...

EUVD-2018-7538

Malware in sbrugna...

EUVD-2016-8463

Malware in sbrugna...

EUVD-2018-15868

Malware in sbrugna...

EUVD-2019-16793

Malware in sbrugna...

EUVD-2018-7541

Malware in sbrugna...

EUVD-2018-15997

Malware in sbrugna...

EUVD-2016-8474

Malware in sbrugna...

EUVD-2024-29811

Malicious code in bioql PyPI...

EUVD-2025-16108

Malicious code in bioql PyPI...

EUVD-2024-20791

Malicious code in bioql PyPI...

CVE-2025-43197

This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to access sensitive user data...

CVE-2025-43194

CVE-2025-43194 affects macOS: an issue where an app may modify protected parts of the file system due to insufficient checks. The vulnerability is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, and macOS Ventura 13.7.7. Based on the provided data, the CVSSv3.1 base score is 9.8 (CRITICAL) with...

CVE-2025-34089 Remote for Mac Unauthenticated Remote Code Execution via AppleScript Injection

An unauthenticated remote code execution vulnerability exists in Remote for Mac, a macOS remote control utility developed by Aexol Studio, in versions up to and including 2025.7. When the application is configured with authentication disabled i.e., the "Allow unknown devices" option is enabled, t...

CVE-2025-4280

MacOS version of Poedit bundles a Python interpreter that inherits the Transparency, Consent, and Control TCC permissions granted by the user to the main application bundle. An attacker with local user access can invoke this interpreter with arbitrary commands or scripts, leveraging the...

CVE-2024-23244

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.7.4, macOS Sonoma 14.4. An app from a standard user account may be able to escalate privilege after admin user login...

CVE-2024-40594

The OpenAI ChatGPT app before 2024-07-05 for macOS opts out of the sandbox, and stores conversations in cleartext in a location accessible to other apps...

CVE-2024-27357

An issue was discovered in WithSecure Elements Agent through 23.x for macOS, WithSecure Elements Client Security through 23.x for macOS, and WithSecure MDR through 23.x for macOS. Local Privilege Escalation can occur during installations or updates by admins...