CVE-2026-40599

CVE-2026-40599 affects ClearanceKit on macOS. Before 5.0.5, a process with an empty Team ID but non-empty Signing ID can be misidentified as an Apple platform binary, enabling a malicious app to impersonate an Apple process in the global allowlist and access protected files. The issue is fixed in...

EUVD-2006-6603

Malware in sbrugna...

EUVD-2006-6604

Malware in sbrugna...

CVE-2025-54288 Source Container Identification Vulnerability via cmdline Spoofing in devLXD Server

Information Spoofing in devLXD Server in Canonical LXD versions 4.0 and above on Linux container platforms allows attackers with root privileges within any container to impersonate other containers and obtain their metadata, configuration, and device information via spoofed process names in the...

Verification Process Spoofing

django-rest-registration is vulnerable to verification process spoofing. The misuse of django signing API and just relying on static string for signatures leads to easily guessable signatures used for email verification...

Multiple Vendor Firewall HIPS Process Spoofing Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21615/info Multiple vendor firewalls and HIPS host-based intrusion prevention systems are prone to a process-spoofing vulnerability. An attacker can exploit this issue to have an arbitrary malicious program appear to run ...

CVE-2006-6618

AntiHook 3.0.0.23 - Desktop relies on the Process Environment Block PEB to identify a process, which allows local users to bypass the product's controls on a process by spoofing the 1 ImagePathName, 2 CommandLine, and 3 WindowTitle fields in the PEB...

CVE-2006-6618

AntiHook 3.0.0.23 - Desktop relies on the Process Environment Block PEB to identify a process, which allows local users to bypass the product's controls on a process by spoofing the 1 ImagePathName, 2 CommandLine, and 3 WindowTitle fields in the PEB...

CVE-2006-6621

The CVE-2006-6621 entry concerns Filseclab Personal Firewall 3.0.0.8686, which relies on the Process Environment Block (PEB) to identify a process. The root cause is spoofing of PEB fields (ImagePathName, CommandLine, WindowTitle), enabling local users to bypass the product’s controls on a proces...

CVE-2006-6623

Sygate Personal Firewall 5.6.2808 is affected. The flaw arises from relying on the Process Environment Block (PEB) to identify a process, allowing local attackers to bypass product controls by spoofing the PEB fields (ImagePathName, CommandLine, and WindowTitle). The connected documents confirm t...