CVE-2024-25249

An issue in He3 App for macOS version 2.0.17, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

He3 Security breaches

He3 is a developer toolkit. A security vulnerability exists in He3 version 2.0.17 that originates from allowing remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

CVE-2024-25249

An issue in He3 App for macOS version 2.0.17, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

PT-2024-20844 · He3 App · He3 App

Name of the Vulnerable Software and Affected Versions: He3 App for macOS version 2.0.17 Description: An issue in He3 App for macOS allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings. Recommendations: For He3 App for macOS version 2.0.17,...

Code injection

An issue in Kap for macOS version 3.6.0 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

CVE-2024-23742

An issue in Loom on macOS version 0.196.1 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings. NOTE: the vendor disputes this because it requires local access to a victim's machine...

CVE-2024-23742

An issue in Loom on macOS version 0.196.1 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings. NOTE: the vendor disputes this because it requires local access to a victim's machine...

CVE-2024-23739

An issue in Discord for macOS version 0.0.291 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

CVE-2024-23739

An issue in Discord for macOS version 0.0.291 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

Crlf injection

An issue in Discord for macOS version 0.0.291 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

Code injection

An issue in Loom on macOS version 0.196.1 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings. NOTE: the vendor disputes this because it requires local access to a victim's machine...

CVE-2024-23738

An issue in Postman version 10.22 and before on macOS allows a remote attacker to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings. NOTE: the vendor states "we dispute the report's accuracy ... the configuration does not enable remote code execution.."...

CVE-2024-23741

An issue in Hyper on macOS version 3.4.1 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

Loom Security Vulnerabilities

Loom is a free screen recorder for Mac from Loom. A security vulnerability previously existed in Loom version 0.196.1, which stemmed from arbitrary code execution via the RunAsNode and enableNodeClilnspectArguments settings...

Discord Security Breach

Discord is a free chat service from Discord Inc. A security vulnerability previously existed in Discord version 0.0.291, which stemmed from arbitrary code execution via the RunAsNode and enableNodeClilnspectArguments settings...

Notion Security Breach

Notion is an application from Notion that integrates notes, knowledgebase, datagrid, kanban, calendar, and other capabilities into one application. A security vulnerability exists in Notion prior to version 3.1.0 that stems from arbitrary code execution via the RunAsNode and...

Postman Security Vulnerability

Postman is an API platform for developers from the US-based Postman Inc. A security vulnerability exists in Postman prior to version 10.22, which stems from arbitrary code execution via the RunAsNode and enableNodeClilnspectArguments settings...

Hyper Security Vulnerability

hyper is a fast, correct HTTP implementation of Rust in the hyperium open source. A security vulnerability exists in Hyper prior to version 3.4.1, which stems from arbitrary code execution via the RunAsNode and enableNodeClilnspectArguments settings...

PT-2024-20049 · Hyper · Hyper

Name of the Vulnerable Software and Affected Versions: Hyper versions 3.4.1 and earlier Description: The issue allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings. Recommendations: For Hyper versions 3.4.1 and earlier, consider disabling...

PT-2024-20051 · Notion · Notion

Name of the Vulnerable Software and Affected Versions: Notion versions prior to 3.1.0 Description: The issue might allow code execution because of RunAsNode and enableNodeClilnspectArguments. The vendor states that the attacker must launch the Notion Desktop application with nonstandard flags tha...