DEBIAN-CVE-2026-11175

Incorrect security UI in Messages in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

PT-2026-46690

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 149.0.7827.53 Description A use after free issue in Messages allows a remote attacker to potentially perform a sandbox escape by using a crafted HTML page. Use after free is a memory corruption flaw...

CVE-2018-9461

In onAttachFragment of ShareIntentActivity.java, there is a possible way for an app to read files in the messages app due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2018-9461

In onAttachFragment of ShareIntentActivity.java, there is a possible way for an app to read files in the messages app due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

PT-2024-22042 · Apple · Macos Monterey +8

Name of the Vulnerable Software and Affected Versions: macOS Ventura versions 13.6.7 and earlier macOS Monterey versions 12.7.5 and earlier iOS versions 16.7.8 and earlier, 17.5 and earlier iPadOS versions 16.7.8 and earlier, 17.5 and earlier tvOS version 17.5 and earlier visionOS version 1.2 and...

CVE-2020-20095

CVE-2020-20095 affects iMessage (Messages app) on iOS 12.4 and earlier, where the user interface fails to correctly render URI messages, enabling URI spoofing via specially crafted messages. The vulnerability relates to how the app presents links, potentially misleading users about the actual des...

Last Week’s Security News: Black Hat Pwnie Awards, iPhone Checks Photos, Evil Windows Print Server, Cisco VPN Routers Takeovers

Hello everyone! Last Weeks Security News, August 1 - August 8. Black Hat Pwnie Awards Last week was more quiet than normal with Black Hat USA and DEF CON security conferences. I would like to start with the Pwnie Awards, which are held annually at Black Hat. Its like an Oscar or Tony in the...

CVE-2020-3874

An issued existed in the naming of screenshots. The issue was corrected with improved naming. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. Screenshots of the Messages app may reveal additional message content...

CVE-2020-3874

The CVE-2020-3874 entry concerns an issue in the naming of Screenshots within Messages on iOS/iPadOS. According to the Apple security content, an issue allowed Screenshots to reveal additional message content, and this was fixed in iOS 13.3.1 / iPadOS 13.3.1. The core problem is described as a mi...

This Simple Text Message Can Crash and Reboot Your iPhone

A newly discovered bug in Apple's iOS mobile operating system has emerged this evening that lets iPhone users crash another user’s iPhone by just sending a tiny string of text characters in a message. The bug is related to the Messages app and the notification system used by iPhone and iPad devic...