365 matches found
CVE-2026-43743
A race condition was addressed with improved state handling. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination...
CVE-2026-43743
A race condition was addressed with improved state handling. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination...
CVE-2026-43743
CVE-2026-43743 is a race condition addressed by Apple in macOS Tahoe 26.5.2 and iOS/iPadOS 26.5.2. The issue affects the IOGPUFamily entry (Impact: a user-level app may cause an unexpected system termination) and is mitigated by the patched state handling. The CVE references confirm the fix in ma...
PT-2026-53729
Name of the Vulnerable Software and Affected Versions iOS versions prior to 26.5.2 iPadOS versions prior to 26.5.2 macOS Tahoe versions prior to 26.5.2 Description A race condition, which occurs when the timing or sequence of events is not properly controlled, was identified. This issue allows an...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerabilities have been resolved: net/rds: There is no shortcut for exiting from the RDSCONNERROR state. RDS connections have a state called “rdsconnpath::cpstate”. Connections transition between states, and this transition occurs under the condition...
Vulnerability of the Audio/Video component: The GMP browser components in Mozilla Firefox, Firefox ESR, and the email client Thunderbird allow a hacker to trigger a service failure.
Vulnerability of the Audio/Video component: The GMP browsers Mozilla Firefox and Firefox ESR, as well as the email client Thunderbird, are vulnerable due to insufficient checking of unusual or exceptional states. Exploitation of this vulnerability can allow a malicious actor to cause service...
EUVD-2022-56002
A person with access to a Mac may be able to bypass Login Window. A consistency issue was addressed with improved state handling. This issue is fixed in macOS Monterey 12.4...
CVE-2022-48575
A person with access to a Mac may be able to bypass Login Window. A consistency issue was addressed with improved state handling. This issue is fixed in macOS Monterey 12.4...
CVE-2022-48575
A person with access to a Mac may be able to bypass Login Window. A consistency issue was addressed with improved state handling. This issue is fixed in macOS Monterey 12.4...
CVE-2022-48575
A person with access to a Mac may be able to bypass Login Window. A consistency issue was addressed with improved state handling. This issue is fixed in macOS Monterey 12.4...
ROS-20260609-73-0024
Vulnerability of the Audio/Video component: Playback in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient checking of unusual or exceptional states. Exploitation of this vulnerability can allow a remote attacker to cause service failures...
CVE-2026-28919
A consistency issue was addressed with improved state handling. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to gain root privileges...
ROS-20260605-73-0061
Vulnerability of Audio/Video components: Mozilla Firefox, Firefox ESR, and Thunderbird’s email client use web codecs. This vulnerability is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
CVE-2026-9047
Improper handling of factor key state in the multi-factor authentication management feature in Devolutions Server allows an attacker with knowledge of a user's password to bypass the user's multi-factor authentication after the user reconfigures their factors. This issue affects : Devolutions...
Astra Linux – Vulnerability in WebKit2GTK
A race condition has been addressed through improved state handling. This issue is fixed in Safari 26.2, iOS 18.7.3, and iPadOS 18.7.3; iOS 26.2 and iPadOS 26.2; macOS Tahoe 26.2; tvOS 26.2; visionOS 26.2; and watchOS 26.2. Processing maliciously crafted web content may lead to an unexpected...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: can: isotp: split the transmission timer into two parts—transmission and timeout. The timer for the transmission of isotp PDUs previously had two functions: 1. sending two consecutive frames with a specified time interval. 2...
webkitgtk: A website may be able to track users through Safari web extensions
A flaw was found in WebKitGTK. A malicious website can track users through web extensions due to improper state management...
The vulnerability of the NSS component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird allows a hacker to gain unauthorized access to protected information.
The vulnerability of the NSS component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected informatio...
Backdrop CMS Salesforce 跨站请求伪造漏洞
Backdrop CMS Salesforce is a data synchronization extension module developed by Backdrop CMS Inc. for integration with the Salesforce platform. Versions of Backdrop CMS Salesforce prior to 1.x-1.0.1 contained a cross-site request forgeing vulnerability. This vulnerability stemmed from improper us...
EUVD-2026-29240
A consistency issue was addressed with improved state handling. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to gain root privileges...