108 matches found
EUVD-2024-25004
Malicious code in bioql PyPI...
EUVD-2024-25034
Malicious code in bioql PyPI...
EUVD-2024-24997
Malicious code in bioql PyPI...
EUVD-2024-25009
Malicious code in bioql PyPI...
EUVD-2024-25003
Malicious code in bioql PyPI...
EUVD-2024-25014
Malicious code in bioql PyPI...
EUVD-2024-25040
Malicious code in bioql PyPI...
AppleAVD AV1_Syntax::Parse_Header Out-Of-Bounds Read
There is an issue in AppleAVD kernel extension with decoding AV1 video files that could potentially be used to read out-of bound data or potentially cause a kernel crash when rendering a malformed video file. The issue was observed on macOS Sonoma 14.5...
CVE-2024-27844
The issue was addressed with improved checks. This issue is fixed in Safari 17.5, macOS Sonoma 14.5, visionOS 1.2. A website's permission dialog may persist after navigation away from the site...
CVE-2024-27836
The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, visionOS 1.2. Processing a maliciously crafted image may lead to arbitrary code execution...
CVE-2024-27841
The issue was addressed with improved memory handling. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5. An app may be able to disclose kernel memory...
CVE-2024-27842
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5. An app may be able to execute arbitrary code with kernel privileges...
CVE-2024-27796
The issue was addressed with improved checks. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7. An attacker may be able to elevate privileges...
CVE-2024-27804
The issue was addressed with improved memory handling. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.3, watchOS 10.5. An app may be able to cause unexpected system termination...
CVE-2024-27816
A logic issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, watchOS 10.5. An attacker may be able to access user data...
CVE-2024-27826
CVE-2024-27826 is an Apple macOS kernel‑level memory handling vulnerability. The issue could allow an app to execute arbitrary code with kernel privileges. Apple’s advisories indicate the fix was applied via memory handling improvements and are effective for macOS versions: Ventura 13.6.8, Sonoma...
CVE-2024-27884
This issue was addressed with a new entitlement. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, watchOS 10.5. An app may be able to access user-sensitive data...
CVE-2024-27884
CVE-2024-27884 affects Apple platforms (macOS Sonoma 14.5, watchOS 10.5, visionOS 1.2, tvOS 17.5, iOS 17.5 and iPadOS 17.5). Description in multiple sources indicates the issue was addressed with a new entitlement, enabling an app to access user-sensitive data. In visionOS security content, CVE-2...
CVE-2024-27823
A race condition was addressed with improved locking. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7, tvOS 17.5, visionOS 1.3, watchOS 10.5. An attacker in a privileged network position may be able to...
CVE-2024-27885
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sonoma 14.5, macOS Ventura 13.6.7, macOS Monterey 12.7.5. An app may be able to modify protected parts of the file system...