PYSEC-2026-119

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. In versions 6.6.0 through 6.9.12, there is a privilege escalation vulnerability that can be exploited by unauthenticated attackers to query the API as any existing user, including the default admi...

About the security content of iOS 17.7.1 and iPadOS 17.7.1

About the security content of iOS 17.7.1 and iPadOS 17.7.1 This document describes the security content of iOS 17.7.1 and iPadOS 17.7.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...

About the security content of visionOS2.1

About the security content of visionOS2.1 This document describes the security content of visionOS 2.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

Android Enterprise - How to remove Managed configuration policy from Android device

How to removeManaged configuration policy pushed to Android devices...

OPENSUSE-SU-2021:0825-1 Security update for chromium

This update for chromium fixes the following issues: Chromium 91.0.4472.77 boo1186458: Support Managed configuration API for Web Applications WebOTP API: cross-origin iframe support CSS custom counter styles Support JSON Modules Clipboard: read-only files support Remove webkitBeforeTextInserted &...

Code injection

The MCX Application Restrictions component in Apple OS X before 10.11.1, when Managed Configuration is enabled, mishandles provisioning profiles, which allows attackers to bypass intended entitlement restrictions and gain privileges via a crafted developer-signed app...

CVE-2015-7016

The CVE-2015-7016 issue affects Apple Mac OS X (MCX Application Restrictions) prior to OS X 10.11.1 where Managed Configuration mishandles provisioning profiles. This enables a crafted developer-signed app to bypass entitlement restrictions and gain privileges, due to a flaw in how provisioning p...

CVE-2015-7016

The MCX Application Restrictions component in Apple OS X before 10.11.1, when Managed Configuration is enabled, mishandles provisioning profiles, which allows attackers to bypass intended entitlement restrictions and gain privileges via a crafted developer-signed app...