Threats Tagged 'cve-2026-24065'
View all threats tagged with 'cve-2026-24065'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-24065'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-24065: CWE-367 Time-of-check time-of-use (TOCTOU) race condition in Waves Audio Ltd. Waves CentralCVE-2026-24065 0 Waves Central for macOS versions 13.0.9 through 16.5.5 contain a local privilege escalation vulnerability in the privileged helper service. The helper validates connecting XPC clients using the client process identifier (PID) to verify code-signing identity. Because process identifiers can be reused, a local attacker can exploit a race condition between the time a connection request is made and the time the helper performs validation, causing the helper to trust an attacker-controlled process. This allows the attacker to invoke privileged operations, resulting in arbitrary code execution as root. The issue is fixed in version 16.6.2. Join the discussion | CVE Database V5 | 06/09/2026, 14:50:15 UTC Added: 06/09/2026, 15:25:52 UTC |
Showing 1 to 1 of 1 result