CVE Security

The MLX inference backend in Docker Model Runner on macOS uses the MLX-LM library, which unconditionally imports and executes arbitrary Python files f...

Applications iOS


                                    CVE-2026-5843

Lire l'article

high 8.2

29/05/2026

Vulnérabilité high détectée - CVE-2026-5817

The vllm-metal inference backend in Docker Model Runner on macOS unconditionally sets trust_remote_code=True when loading model tokenizers, and runs w...

Applications iOS


                                    CVE-2026-5817

Lire l'article

high 8.8

28/05/2026

Vulnérabilité high détectée - CVE-2026-47114

IINA before 1.4.3 contains a user-assisted command execution vulnerability that allows remote attackers to execute arbitrary commands by supplying mal...

iOS


                                    CVE-2026-47114

Lire l'article

medium 6.5

28/05/2026

Vulnérabilité medium détectée - CVE-2026-45254

In the case of the cap_net service, when a key present in the old limit was omitted from the new limit, the missing key was treated as "allow any" ins...

iOS Mobile


                                    CVE-2026-45254

Lire l'article

unknown

28/05/2026

Vulnérabilité unknown détectée - CVE-2026-43496

In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_red: Replace direct dequeue call with peek and qdisc_dequeue_peeke...

iOS Linux Mobile


                                    CVE-2026-43496

Lire l'article

high 8.8

27/05/2026

Vulnérabilité high détectée - CVE-2026-9126

Use after free in DOM in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted H...

Applications iOS Linux


                                    CVE-2026-9126

Lire l'article

high 8.8

27/05/2026

Vulnérabilité high détectée - CVE-2026-9118

Use after free in XR in Google Chrome on Windows prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code via a crafted HTML page. ...

Applications iOS Linux


                                    CVE-2026-9118

Lire l'article

high 8.8

27/05/2026

Vulnérabilité high détectée - CVE-2026-9119

Heap buffer overflow in WebRTC in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code inside a sandbox via a ...

Applications iOS Linux


                                    CVE-2026-9119

Lire l'article

high 8.8

27/05/2026

Vulnérabilité high détectée - CVE-2026-9120

Use after free in WebRTC in Google Chrome prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromi...

Applications iOS Linux


                                    CVE-2026-9120

Lire l'article

high 8.8

27/05/2026

Vulnérabilité high détectée - CVE-2026-9121

Out of bounds read in GPU in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to potentially exploit heap corruption via a crafted H...

Applications iOS Linux


                                    CVE-2026-9121

Lire l'article

medium 6.5

27/05/2026

Vulnérabilité medium détectée - CVE-2026-9122

Out of bounds read in GPU in Google Chrome on Mac prior to 148.0.7778.179 allowed a remote attacker to obtain potentially sensitive information from p...

Applications iOS


                                    CVE-2026-9122

Lire l'article

medium 5.3

27/05/2026

Vulnérabilité medium détectée - CVE-2026-9124

Insufficient validation of untrusted input in Input in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker who had compromised the rend...

Applications iOS Linux


                                    CVE-2026-9124

Lire l'article

1 2 3