Latest critical severity vulnerabilities for "apple macos"

Apple macOSThis issue was addressed with improved validation of file attributes. This issue is fixed in macOS S…

critical

10

First published (updated )

CVE-2024-44148

Apple macOSA logic issue was addressed with improved file handling. This issue is fixed in macOS Sequoia 15. An…

critical

10

First published (updated )

CVE-2024-44146

Apple macOS SonomaDisk Images. The issue was addressed with improved checks.

critical

9.1

First published (updated )

CVE-2024-27832

Apple watchOSlibiconv. The issue was addressed with improved checks.

critical

9.1

First published (updated )

CVE-2024-27811

Apple SafariSafari. The issue was addressed with improved checks.

critical

9.1

First published (updated )

CVE-2024-27844

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

CVE-2024-23746Code Injection

critical

9.8

EPSS

0.17%

First published (updated )

CVE-2024-23746

Discord DiscordAn issue in Discord for macOS version 0.0.291 and before, allows remote attackers to execute arbitra…

critical

9.8

EPSS

0.32%

First published (updated )

CVE-2024-23739

Studionetworksolutions SharebrowserStudio Network Solutions ShareBrowser before 7.0 on macOS mishandles signature verification, aka PMP…

critical

9.8

First published (updated )

CVE-2023-44077

Heimdalsecurity ThorAn issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows att…

critical

9.8

First published (updated )

CVE-2023-29486

Heimdalsecurity ThorAn issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and bef…

critical

9.1

First published (updated )

CVE-2023-29487

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Heimdalsecurity ThorAn issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and bef…

critical

9.8

First published (updated )

CVE-2023-29485

Atlassian CompanionCertain versions of the Atlassian Companion App for MacOS were affected by a remote code execution v…

critical

9.8

Zeroday

First published (updated )

CVE-2023-22524

Acronis Cyber ProtectSensitive information disclosure and manipulation due to improper authentication. The following prod…

critical

9.1

First published (updated )

CVE-2023-44152

Apple macOSImage Capture. An access issue was addressed with additional sandbox restrictions.

critical

10

First published (updated )

CVE-2023-38586

Apple macOSIOAcceleratorFamily. The issue was addressed with improved bounds checks.

critical

9.1

EPSS

0.09%

First published (updated )

CVE-2023-40436

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Apple macOSNetFSFramework. A permissions issue was addressed with additional restrictions.

critical

10

First published (updated )

CVE-2023-40455

Apple iPadOSApple Multiple Products WebKit Code Execution Vulnerability

critical

9.8

Exploited

First published (updated )

CVE-2023-41993

Apple SafariUse After Free

critical

9.8

First published (updated )

CVE-2023-40414

Marktext MarktextMarkText DOM-Based Cross-site Scripting leading to Remote Code Execution

critical

9.6

First published (updated )

CVE-2023-2318

Nomachine NomachineAn arbitrary file overwrite vulnerability in NoMachine Free Edition and Enterprise Client for macOS …

critical

9.1

First published (updated )

CVE-2023-39107

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Apple iOSWebKit. The issue was addressed with improved checks.

critical

9.8

First published (updated )

CVE-2023-40397

Apple iPadOSlibpcap. This issue was addressed with improved checks.

critical

9.8

First published (updated )

CVE-2023-40400

Apple iPadOSInput Validation, Integer Overflow

critical

9.8

First published (updated )

CVE-2023-36495

Apple macOSKernel. An out-of-bounds read was addressed with improved bounds checking.

critical

9.8

First published (updated )

CVE-2023-37285

Apple iPadOSInput Validation

critical

9.8

First published (updated )

CVE-2023-38604

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Apple iPadOSUse After Free

critical

9.8

First published (updated )

CVE-2023-38598

Apple iPadOSApple Neural Engine. The issue was addressed with improved memory handling.

critical

9.8

First published (updated )

CVE-2023-34425

Apache EventMeshApache EventMesh RabbitMQ-Connector plugin allows RCE through deserialization of untrusted data

critical

9.8

First published (updated )

CVE-2023-26512

Tauri TauriTauri vulnerable to Regression on Filesystem Scope Checks for Dotfiles

critical

9.8

First published (updated )

CVE-2023-34460

Bloofox BloofoxcmsSQL Injection

critical

9.8

First published (updated )

CVE-2023-34751

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Bloofox BloofoxcmsSQL Injection

critical

9.8

First published (updated )

CVE-2023-34752

Bloofox BloofoxcmsSQL Injection

critical

9.8

First published (updated )

CVE-2023-34755

Bloofox BloofoxcmsSQL Injection

critical

9.8

First published (updated )

CVE-2023-34756

Bloofox BloofoxcmsSQL Injection

critical

9.8

First published (updated )

CVE-2023-34754

Bloofox BloofoxcmsSQL Injection

critical

9.8

First published (updated )

CVE-2023-34750

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Bloofox BloofoxcmsSQL Injection

critical

9.8

First published (updated )

CVE-2023-34753

Kubernetes Minikube[minikube] Network Port exposure in minikube running on macOS using Docker driver

critical

9.8

First published (updated )

CVE-2023-1174

Apple iPadOSUse After Free

critical

9.8

First published (updated )

CVE-2023-32412

Apple macOSUse After Free

critical

9.8

First published (updated )

CVE-2023-32387

ubuntu/curlInfoleak

critical

9.1

First published (updated )

CVE-2023-28322

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

HYPR Workforce AccessIncorrect Permission Assignment for Critical Resource vulnerability in HYPR Workforce Access on MacO…

critical

9.8

First published (updated )

CVE-2023-0834

Mozilla FirefoxAn attacker could have caused an out of bounds memory access using WebGL APIs, leading to memory cor…

critical

9.8

First published (updated )

CVE-2023-29531

ABB RCCMDUse of Default Password

critical

9.8

First published (updated )

CVE-2022-4126

Apple SafariWebKit Web Inspector. This issue was addressed with improved state management.

critical

9.8

First published (updated )

CVE-2023-28201

Apple macOSdcerpc. The issue was addressed with improved memory handling.

critical

9.1

First published (updated )

CVE-2023-27958

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Apple macOSdcerpc. The issue was addressed with improved memory handling.

critical

9.8

First published (updated )

CVE-2023-27953

Apple iPadOSiCloud. This was addressed with additional checks by Gatekeeper on files downloaded from an iCloud s…

critical

9.8

First published (updated )

CVE-2023-23526

Yugabyte YugabytedbRemote Code Execution

critical

9.8

First published (updated )

CVE-2023-0575

Apple macOSBuffer Overflow

critical

9.8

First published (updated )

CVE-2023-23513

Activitywatch ActivitywatchActivity Watch vulnerable to command execution on macOS via printAppTitle.scpt

critical

9.6

First published (updated )

CVE-2021-32692

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Versions

Apple macOSThis issue was addressed with improved validation of file attributes. This issue is fixed in macOS S…

Apple macOSA logic issue was addressed with improved file handling. This issue is fixed in macOS Sequoia 15. An…

Apple macOS SonomaDisk Images. The issue was addressed with improved checks.

Apple watchOSlibiconv. The issue was addressed with improved checks.

Apple SafariSafari. The issue was addressed with improved checks.

Never miss a vulnerability like this again

CVE-2024-23746Code Injection

Discord DiscordAn issue in Discord for macOS version 0.0.291 and before, allows remote attackers to execute arbitra…

Studionetworksolutions SharebrowserStudio Network Solutions ShareBrowser before 7.0 on macOS mishandles signature verification, aka PMP…

Heimdalsecurity ThorAn issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows att…

Heimdalsecurity ThorAn issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and bef…

Never miss a vulnerability like this again

Heimdalsecurity ThorAn issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and bef…

Atlassian CompanionCertain versions of the Atlassian Companion App for MacOS were affected by a remote code execution v…

Acronis Cyber ProtectSensitive information disclosure and manipulation due to improper authentication. The following prod…

Apple macOSImage Capture. An access issue was addressed with additional sandbox restrictions.

Apple macOSIOAcceleratorFamily. The issue was addressed with improved bounds checks.

Never miss a vulnerability like this again

Apple macOSNetFSFramework. A permissions issue was addressed with additional restrictions.

Apple iPadOSApple Multiple Products WebKit Code Execution Vulnerability

Apple SafariUse After Free

Marktext MarktextMarkText DOM-Based Cross-site Scripting leading to Remote Code Execution

Nomachine NomachineAn arbitrary file overwrite vulnerability in NoMachine Free Edition and Enterprise Client for macOS …

Never miss a vulnerability like this again

Apple iOSWebKit. The issue was addressed with improved checks.

Apple iPadOSlibpcap. This issue was addressed with improved checks.

Apple iPadOSInput Validation, Integer Overflow

Apple macOSKernel. An out-of-bounds read was addressed with improved bounds checking.

Apple iPadOSInput Validation

Never miss a vulnerability like this again

Apple iPadOSUse After Free

Apple iPadOSApple Neural Engine. The issue was addressed with improved memory handling.

Apache EventMeshApache EventMesh RabbitMQ-Connector plugin allows RCE through deserialization of untrusted data

Tauri TauriTauri vulnerable to Regression on Filesystem Scope Checks for Dotfiles

Bloofox BloofoxcmsSQL Injection

Never miss a vulnerability like this again

Bloofox BloofoxcmsSQL Injection

Bloofox BloofoxcmsSQL Injection

Bloofox BloofoxcmsSQL Injection

Bloofox BloofoxcmsSQL Injection

Bloofox BloofoxcmsSQL Injection

Never miss a vulnerability like this again

Bloofox BloofoxcmsSQL Injection

Kubernetes Minikube[minikube] Network Port exposure in minikube running on macOS using Docker driver

Apple iPadOSUse After Free

Apple macOSUse After Free

ubuntu/curlInfoleak

Never miss a vulnerability like this again

HYPR Workforce AccessIncorrect Permission Assignment for Critical Resource vulnerability in HYPR Workforce Access on MacO…

Mozilla FirefoxAn attacker could have caused an out of bounds memory access using WebGL APIs, leading to memory cor…

ABB RCCMDUse of Default Password

Apple SafariWebKit Web Inspector. This issue was addressed with improved state management.

Apple macOSdcerpc. The issue was addressed with improved memory handling.

Never miss a vulnerability like this again

Apple macOSdcerpc. The issue was addressed with improved memory handling.

Apple iPadOSiCloud. This was addressed with additional checks by Gatekeeper on files downloaded from an iCloud s…

Yugabyte YugabytedbRemote Code Execution

Apple macOSBuffer Overflow

Activitywatch ActivitywatchActivity Watch vulnerable to command execution on macOS via printAppTitle.scpt

Never miss a vulnerability like this again

Company

Resources

Contact