276205 matches found
CVE-2026-24063
When a plugin is installed using the Arturia Software Center MacOS, it also installs an uninstall.sh bash script in a root owned path. This script is written to disk with the file permissions 777, meaning it is writable by any user. When uninstalling a plugin via the Arturia Software Center the...
CVE-2026-24063 World-writable uninstall script executed as root in Arturia Software Center
When a plugin is installed using the Arturia Software Center MacOS, it also installs an uninstall.sh bash script in a root owned path. This script is written to disk with the file permissions 777, meaning it is writable by any user. When uninstalling a plugin via the Arturia Software Center the...
CVE-2026-24063 World-writable uninstall script executed as root in Arturia Software Center
When a plugin is installed using the Arturia Software Center MacOS, it also installs an uninstall.sh bash script in a root owned path. This script is written to disk with the file permissions 777, meaning it is writable by any user. When uninstalling a plugin via the Arturia Software Center the...
CVE-2026-24063
The CVE concerns Arturia Software Center on macOS. A plugin install creates an uninstall.sh script in a root-owned path with 777 permissions, writable by any user. During plugin uninstall, the Privileged Helper is instructed to execute this script. If an attacker manipulates the script, this can ...
CVE-2026-24063
When a plugin is installed using the Arturia Software Center MacOS, it also installs an uninstall.sh bash script in a root owned path. This script is written to disk with the file permissions 777, meaning it is writable by any user. When uninstalling a plugin via the Arturia Software Center the...
CVE-2026-24062 Insufficient XPC Client validation leading to local privilege escalation in Arturia Software Center
The "Privileged Helper" component of the Arturia Software Center MacOS does not perform sufficient client code signature validation when a client connects. This leads to an attacker being able to connect to the helper and execute privileged actions leading to local privilege escalation...
CVE-2026-24062
The "Privileged Helper" component of the Arturia Software Center MacOS does not perform sufficient client code signature validation when a client connects. This leads to an attacker being able to connect to the helper and execute privileged actions leading to local privilege escalation...
CVE-2026-24062
The CVE-2026-24062 entry describes an issue in the MacOS Privileged Helper of Arturia Software Center where the Privileged Helper does not perform sufficient client code signature validation during XPC connections. This allows an attacker to connect to the helper and execute privileged actions, r...
CVE-2026-24062 Insufficient XPC Client validation leading to local privilege escalation in Arturia Software Center
The "Privileged Helper" component of the Arturia Software Center MacOS does not perform sufficient client code signature validation when a client connects. This leads to an attacker being able to connect to the helper and execute privileged actions leading to local privilege escalation...
Malicious code in technical-assignment (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7bb4466031b35e68c6b2433674215383e95538391f583e01c1800c758a61c53b The package technical-assignment was found to contain malicious code...
Malicious code in sky-enablement (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9712856e1dd6e76d395507a76c21d01a945d4e5490e0d747384212a4a8b7c6df The package sky-enablement was found to contain malicious code...
Malicious code in hydra-node-consent-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e998f8c12c66f99b303fcb859d154aef24479204cf099b789871a4ee1a9943c The package hydra-node-consent-sdk was found to contain malicious code...
Malicious code in company-billing-sdk-bugbounty (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7e0804c0e591fea0c08e9a93b6aaff5803abac7fd387da23dbfb557009397e6 The package company-billing-sdk-bugbounty was found to contain malicious code...
Malicious code in newlogger (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in 3rugfbe8rivferiuv (NuGet)
--- -= Per source details. Do not edit below this line.=-...
PT-2026-26105
CVE-2026-29858 A lack of path validation in aaPanel v7.57.0 allows attackers to execute a local file inclusion LFI, leadingot sensitive information exposure. https://t.co/WowAOqIOTR...
Arturia Software Center 安全漏洞
Arturia Software Center is an application developed by the French company Arturia, used for managing, installing, and updating music production software and plugins. There is a security vulnerability in Arturia Software Center, which stems from improper permission settings in the uninstall.sh...
PT-2026-26067
When a plugin is installed using the Arturia Software Center MacOS, it also installs an uninstall.sh bash script in a root owned path. This script is written to disk with the file permissions 777, meaning it is writable by any user. When uninstalling a plugin via the Arturia Software Center the...
CVE-2025-67829
Mura before 10.1.14 allows beanFeed.cfc getQuery sortDirection SQL injection...
Linux Distros Unpatched Vulnerability : CVE-2026-1732
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.6 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowe...