CLSA-2026-1776949031 flatpak: Fix of CVE-2026-34079

CVE-2026-34079: restrict cached-file removal to alphanumeric targets in flatpakswitchsymlinkandremove to prevent path-traversal unlink via a sandboxed-app-controlled symlink...

Apple多款产品 安全漏洞

Apple iOS is an operating system developed for mobile devices.Apple macOS is a specialized operating system developed for Mac computers.Apple iPadOS is an operating system for iPad tablets. An information disclosure vulnerability exists in multiple Apple products, which can be exploited by an...

CVE-2025-43413

An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 26.1 and iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1. A sandboxed app may be able to observe system-wide network connections...

CVE-2025-43396

A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1. A sandboxed app may be able to access sensitive user data...

EUVD-2023-31666

Malicious code in bioql PyPI...

EUVD-2023-31671

Malicious code in bioql PyPI...

EUVD-2025-8938

Malicious code in bioql PyPI...

EUVD-2025-8917

Malicious code in bioql PyPI...

CVE-2024-40855

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15, macOS Sonoma 14.7.1, macOS Ventura 13.7.1, visionOS 2. A sandboxed app may be able to access sensitive user data...

CVE-2023-27945

This issue was addressed with improved entitlements. This issue is fixed in Xcode 14.3, macOS Big Sur 11.7.7, macOS Monterey 12.6.6. A sandboxed app may be able to collect system logs...

CVE-2025-31232

A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.5, macOS Sonoma 14.7.6, macOS Ventura 13.7.6. A sandboxed app may be able to access sensitive user data...

CVE-2025-31232

The CVE-2025-31232 entry describes a logic issue that allowed a sandboxed app to potentially access sensitive user data. The issue is mitigated by updates in macOS releases: Ventura 13.7.6, Sequoia 15.5, and Sonoma 14.7.6. The primary cause is a logic flaw; no exploit details are provided in the ...

CVE-2025-30435

Summary (CVE-2025-30435) : macOS Sequoia 15.4 resolves a logging-related vulnerability that could allow a sandboxed app to access sensitive user data in system logs. The issue stems from insufficient data redaction, addressed by improved redaction in the security content for macOS Sequoia 15.4. A...

CVE-2025-30435

This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sequoia 15.4. A sandboxed app may be able to access sensitive user data in system logs...

CVE-2024-40855

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15, macOS Sonoma 14.7.1, macOS Ventura 13.7.1, visionOS 2. A sandboxed app may be able to access sensitive user data...

CVE-2024-40855

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15, macOS Sonoma 14.7.1, macOS Ventura 13.7.1, visionOS 2. A sandboxed app may be able to access sensitive user data...

CVE-2024-40855

CVE-2024-40855 affects macOS (the specific entry notes a sandboxed app could access sensitive user data). The connected sources confirm the issue was addressed with improved checks and implemented as a fix in macOS Ventura 13.7.1, macOS Sequoia 15, and macOS Sonoma 14.7.1. The description does no...

CVE-2024-44278

An information disclosure issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1, watchOS 11.1, visionOS 2.1. A sandboxed app may be able to access sensitive...

PT-2024-31101 · Apple · Macos Sonoma +6

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 18.1 iPadOS versions prior to 18.1 iOS versions prior to 17.7.1 iPadOS versions prior to 17.7.1 macOS Ventura versions prior to 13.7.1 macOS Sonoma versions prior to 14.7.1 watchOS versions prior to 11.1 visionOS version...

CVE-2024-44205

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. A sandboxed app may be able to access sensitive user data in system lo...