macOS Sandbox Escape Vulnerability Allows Keychain Deletion and Replacement

May 2, 2025

macOS Sandbox Escape Vulnerability Allows Keychain Deletion and Replacement

A security vulnerability in macOS has been discovered. It allows malicious actors to escape the App Sandbox protection by manipulating security-scoped bookmarks.
Tracked as CVE-2025-31191, this vulner …

Published Date:
May 02, 2025 (2 hours, 32 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-31191

Source: Read More

Previous ArticleCVE-2025-2812 – Mydata Informatics Ticket Sales Automation SQL Injection

Next Article CISA Releases ICS Advisories Targeting Vulnerabilities & Exploits

Highlights

CVE-2025-32788 – OctoPrint Authentication Bypass

April 22, 2025

CVE ID : CVE-2025-32788

Published : April 22, 2025, 6:15 p.m. | 31 minutes ago

Description : OctoPrint provides a web interface for controlling consumer 3D printers. In versions up to and including 1.10.3, OctoPrint has a vulnerability that allows an attacker to bypass the login redirect and directly access the rendered HTML of certain frontend pages. The primary risk lies in potential future modifications to the codebase that might incorrectly rely on the vulnerable internal functions for authentication checks, leading to security vulnerabilities. This issue has been patched in version 1.11.0.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: Functionally, a Date

Creating Elastic And Bounce Effects With Expressive Animator

Microsoft shares Insiders preview of Visual Studio 2026

From Data To Decisions: UX Strategies For Real-Time Dashboards

DistroWatch Weekly, Issue 1139

Building personal apps with open source and AI

What Can We Actually Do With corner-shape?

Craft, Clarity, and Care: The Story and Work of Mengchu Yao

Can I use React Server Components (RSCs) today?

Can I use React Server Components (RSCs) today?

Perficient Named among Notable Providers in Forrester’s Q3 2025 Commerce Services Landscape

Sarah McDowell Helps Clients Build a Strong AI Foundation Through Salesforce

I Ran Local LLMs on My Android Phone

I Ran Local LLMs on My Android Phone

DistroWatch Weekly, Issue 1139

sudo vs sudo-rs: What You Need to Know About the Rust Takeover of Classic Sudo Command

macOS Sandbox Escape Vulnerability Allows Keychain Deletion and Replacement

macOS Sandbox Escape Vulnerability Allows Keychain Deletion and Replacement

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

CVE-2025-20961 – Sepunion Service Privilege Escalation Vulnerability

CVE-2025-43201 – Apple Music Classical Credential Disclosure

WinRAR Zero-Day Under Active Exploitation – Update to Latest Version Immediately

AI-Driven Automation in 2025: A Game-Changer for Small Business Efficiency⚙️

CVE-2025-32788 – OctoPrint Authentication Bypass

NVIDIA GeForce “Game Ready” graphics driver update fixes bugs from a previous release — Flickering screens patched

CVE-2025-3830 – Kuangstudy KuangSimpleBBS Unrestricted File Upload Vulnerability

How to Use Xbox Game Bar in Windows 11 (Full Guide for Beginners)

macOS Sandbox Escape Vulnerability Allows Keychain Deletion and Replacement

macOS Sandbox Escape Vulnerability Allows Keychain Deletion and Replacement

Related Posts