The Calysteon Corner

A Guide to the Cyber Galaxy

Date	Post
2026-03-06	Activation-Oriented Programming: Applying Binary Exploitation Intuition to AI Red Teaming

CVE	Vendor	CWE	Reference	Writeup
CVE-2026-27820	Ruby	CWE-122 (Heap-based Buffer Overflow)	ruby-lang.org	—
CVE-2026-20652	Apple	CWE-191 (Integer Underflow)	TBD	—
CVE-2025-43505	Apple	CWE-787 (Out-of-Bounds Write / Heap Corruption)	125641	—
CVE-2025-43504	Apple	CWE-121 (Stack-based Buffer Overflow)	125641	True
CVE-2025-43375	Apple	CWE-20 (Improper Input Validation)	125117	—
CVE-2025-43370	Apple	CWE-20 (Improper Input Validation)	125117	—
CVE-2025-43299	Apple	CWE-20 (Improper Input Validation)	125109, 125110, 125111, 125112	—
CVE-2025-43295	Apple	CWE-20 (Improper Input Validation)	125109, 125110, 125111, 125112	—
CVE-2025-43353	Apple	CWE-787 (Out-of-Bounds Write / Heap Corruption)	125110, 125111, 125112	True
CVE-2025-53623	Shopify	CWE-78 (OS Command Injection)	—	—
CVE-2025-43577	Adobe	CWE-416 (Use-After-Free)	—	—
CVE-2024-13334	WordPress	CWE-79 (Reflected XSS)	—	—
CVE-2024-10813	WordPress	CWE-200 (Information Exposure)	—	—
CVE-2024-10792	WordPress	CWE-79 (Reflected XSS)	—	—
CVE-2024-0848	WordPress	CWE-79 (Reflected XSS)	—	—
CVE-2024-0847	WordPress	CWE-352 (CSRF)	—	—
CVE-2024-1780	WordPress	CWE-79 (Reflected XSS)	—	—
CVE-2024-1782	WordPress	CWE-79 (Reflected XSS)	—	—
CVE-2024-0708	WordPress	CWE-200 (Information Exposure)	—	—
CVE-2024-0859	WordPress	CWE-352 (CSRF)	—	—

Vendor	Platform / Release	Component(s)	Reference
Apple	macOS Tahoe 26.2	FileVault	125886
Apple	iOS / iPadOS 26	darwinOS, libc, libpthread, libxml2	125108
Apple	iOS / iPadOS 18.7	libpthread, libxml2	125109
Apple	macOS Tahoe 26	AMD, Core Bluetooth, CoreMedia , darwinOS, libc, libedit, libpthread, libxml2	125110
Apple	macOS Sequoia 15.7	libpthread, libxml2	125111
Apple	macOS Sonoma 14.8	libpthread, libxml2	125112
Apple	tvOS 26	darwinOS, libc, libpthread, libxml2	125114
Apple	visionOS 26	darwinOS	125115
Apple	watchOS 26	darwinOS, libc, libpthread, libxml2	125116