0xilis

2 exploits Active since May 2024

CVE-2024-27876 NOMISEC MEDIUM WORKING POC

macOS Ventura <13.7 - Code Injection

A race condition was addressed with improved locking. This issue is fixed in iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sequoia 15, macOS Sonoma 14.7, macOS Ventura 13.7, visionOS 2. Unpacking a maliciously crafted archive may allow an attacker to write arbitrary files.

48 stars

CVSS 5.5

View Code

CVE-2024-27821 NOMISEC MEDIUM WRITEUP

Apple Ipados < 17.5 - Path Traversal

A path handling issue was addressed with improved validation. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, watchOS 10.5. A shortcut may output sensitive user data without consent.

5 stars

CVSS 4.7

View Code