EUVD-2025-23578

Malicious code in bioql PyPI...

EUVD-2024-2213

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2024-36287

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mattermost Desktop App versions =5.7.0 fail to disable certain Electron debug flags which allows for bypassing TCC restrictions on macOS. CVE-2024-36287 Note th...

CVE-2025-54871

Electron Capture facilitates video playback for screen-sharing and capture. In versions 2.19.1 and below, the elecap app on macOS allows local unprivileged users to bypass macOS TCC privacy protections by enabling ELECTRONRUNASNODE. This environment variable allows arbitrary Node.js code to be...

PT-2025-31890 · Unknown · Electroncapture

Name of the Vulnerable Software and Affected Versions: Electron Capture versions 2.19.1 and below Description: Electron Capture facilitates video playback for screen-sharing and capture. The elecap app on macOS allows local unprivileged users to bypass macOS TCC Transparency, Consent, and Control...

CVE-2025-1398 macOS TCC Bypass via Code Injection

Mattermost Desktop App versions =5.10.0 explicitly declared unnecessary macOS entitlements which allows an attacker with remote access to bypass Transparency, Consent, and Control TCC via code injection...

CVE-2025-1398 macOS TCC Bypass via Code Injection

Mattermost Desktop App versions =5.10.0 explicitly declared unnecessary macOS entitlements which allows an attacker with remote access to bypass Transparency, Consent, and Control TCC via code injection...

CVE-2020-9934 - macOS Transparency, Consent, and Control (TCC) Framework bypass

An issue existed in the handling of environment variables. This issue was addressed with improved validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6. A local user may be able to view sensitive user information. Recent assessments: busterb at August 03, 2020 10:42p...