18 matches found
EUVD-2018-15942
Malware in sbrugna...
EUVD-2015-5783
Malware in sbrugna...
Apple macOS Catalina Arbitrary Code Execution Vulnerability
Apple macOS Catalina is a specialized operating system developed by Apple Inc. for Mac computers. An arbitrary code execution vulnerability exists in the PluginKit component of Apple macOS Catalina versions prior to 10.15.1. An attacker can exploit this vulnerability to execute arbitrary code wit...
Apple macOS Catalina PluginKit Component Logic Flaw Vulnerability
Apple macOS Catalina is a specialized operating system developed by Apple for Mac computers.PluginKit is one of the components of the PluginKit. A security vulnerability exists in the PluginKit component in Apple macOS Catalina versions prior to 10.15.1. A local attacker could exploit this...
macOS 10.13.x < 10.13.4 Multiple Vulnerabilities
Binary data 700515.prm...
Apple iOS and macOS High Sierra PluginKit Competitive Conditions Vulnerability
Apple iOS and macOS High Sierra are both products of Apple Inc. Apple iOS is an operating system for mobile devices; macOS High Sierra is a specialized operating system for Mac computers. pluginKit is one of the plugin building components. A competitive condition vulnerability exists in the...
CVE-2018-4156
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10.13.4 is affected. The issue involves the "PluginKit" component. A race condition allows attackers to execute arbitrary code in a privileged context via a crafted app...
CVE-2018-4156
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10.13.4 is affected. The issue involves the "PluginKit" component. A race condition allows attackers to execute arbitrary code in a privileged context via a crafted app...
Race condition
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10.13.4 is affected. The issue involves the "PluginKit" component. A race condition allows attackers to execute arbitrary code in a privileged context via a crafted app...
CVE-2018-4156
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10.13.4 is affected. The issue involves the "PluginKit" component. A race condition allows attackers to execute arbitrary code in a privileged context via a crafted app...
CVE-2018-4156
CVE-2018-4156 is a race-condition vulnerability in Appleās PluginKit affecting iOS versions before 11.3 and macOS versions before 10.13.4. The issue can let a crafted app execute arbitrary code in a privileged context, representing a local-priority privilege-escalation impact. Related CES data co...
macOS 10.13.x < 10.13.4 Multiple Vulnerabilities
The remote host is running a version of macOS / Mac OS X that is 10.13.x prior to 10.13.4. It is, therefore, affected by multiple vulnerabilities in the following components : - Admin Framework - APFS - ATS - CoreFoundation - CoreText - Disk Images - Disk Management - File System Events - iCloud...
macOS and Mac OS X Multiple Vulnerabilities (Security Update 2018-002)
The remote host is running Mac OS X 10.11.6 or Mac OS X 10.12.6 and is missing a security update. It is therefore, affected by multiple vulnerabilities affecting the following components : - ATS - CFNetwork Session - CoreFoundation - CoreTypes - curl - Disk Images - iCloud Drive - Kernel - kext...
Apple iOS < 9.0 Multiple Vulnerabilities
Binary data 8979.prm...
CVE-2015-5837
PluginKit in Apple iOS before 9 allows attackers to bypass an intended app-trust requirement and install arbitrary extensions via a crafted enterprise app...
Design/Logic Flaw
PluginKit in Apple iOS before 9 allows attackers to bypass an intended app-trust requirement and install arbitrary extensions via a crafted enterprise app...
CVE-2015-5837
PluginKit in Apple iOS before 9 allows attackers to bypass an intended app-trust requirement and install arbitrary extensions via a crafted enterprise app...
CVE-2015-5837
Apple iOS PluginKit in versions before 9 allows bypassing the intended app-trust check to install arbitrary extensions via a crafted enterprise app. The root cause is/are the insufficient validation checks during extension installation, enabling an enterprise app to push extensions before user tr...