25 matches found
CVE-2018-4434
An out-of-bounds read was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14.2...
EUVD-2020-7106
Malware in sbrugna...
EUVD-2001-0904
Malware in sbrugna...
EUVD-2016-8475
Malware in sbrugna...
EUVD-2019-5022
Malware in sbrugna...
EUVD-2025-19102
Malicious code in bioql PyPI...
EUVD-2022-32037
Malicious code in bioql PyPI...
EUVD-2022-33207
Malicious code in bioql PyPI...
PT-2025-31352
Name of the Vulnerable Software and Affected Versions Apple macOS affected versions not specified Description The USD importMeshJointWeights and USD importMeshes functionalities in Apple macOS contain heap-based buffer overflow vulnerabilities. These issues can lead to remote code execution...
CVE-2025-6426 No warning when opening executable terminal files on macOS
The executable file warning did not warn users before opening files with the terminal extension. This bug only affects Firefox for macOS. Other versions of Firefox are unaffected.. This vulnerability was fixed in Firefox 140, Firefox ESR 128.12, Thunderbird 140, and Thunderbird 128.12...
CVE-2025-6426 No warning when opening executable terminal files on macOS
The executable file warning did not warn users before opening files with the terminal extension. This bug only affects Firefox for macOS. Other versions of Firefox are unaffected.. This vulnerability was fixed in Firefox 140, Firefox ESR 128.12, Thunderbird 140, and Thunderbird 128.12...
CVE-2025-6426
The CVE-2025-6426 issue affects Firefox for macOS where opening files with the terminal extension did not warn the user. Connected advisories confirm affected products and versions: Firefox before 140 and Firefox ESR before 128.12, Thunderbird before 140 and Thunderbird before 128.12. The root ca...
CVE-2024-44195
A logic issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.1. An app may be able to read arbitrary files...
CVE-2023-32362
Error handling was changed to not reveal sensitive information. This issue is fixed in macOS Ventura 13.3. A website may be able to track sensitive user information...
CVE-2019-10038
Evernote 7.9 on macOS allows attackers to execute arbitrary programs by embedding a reference to a local executable file such as the /Applications/Calculator.app/Contents/MacOS/Calculator file...
CVE-2025-24183
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3. A local user may be able to modify protected parts of the file system...
Google Chrome < 136.0.7103.92 Vulnerability
The version of Google Chrome installed on the remote macOS host is prior to 136.0.7103.92. It is, therefore, affected by a vulnerability as referenced in the 202505stable-channel-update-for-desktop advisory. - Use after free in WebAudio in Google Chrome prior to 136.0.7103.92 allowed a remote...
CVE-2025-24279
This issue was addressed with improved file handling. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to access contacts...
Wireshark 4.2.x < 4.2.11 A Vulnerability (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 4.2.11. It is, therefore, affected by a vulnerability as referenced in the wireshark-4.2.11 advisory. - The Bundle Protocol and CBOR dissectors could crash. Fixed in master: 83c73a83ad Fixed in release-4.4:...
Google Chrome < 132.0.6834.159 Vulnerability
The version of Google Chrome installed on the remote macOS host is prior to 132.0.6834.159. It is, therefore, affected by a vulnerability as referenced in the 202501stable-channel-update-for-desktop28 advisory. - Use after free in DevTools in Google Chrome prior to 132.0.6834.159 allowed a remote...