All a user needs to do is click on an email attachment, and boom – the code is silently executed without the victim knowing. It affects Big Sur and prior versions of macOS.
https://threatpost.com/unpatched-apple-zero-day-code-execution/174915/
Squirrel Bug Lets Attackers Execute Code in Games, Cloud Services
-
The out-of-bounds read vulnerability enables an attacker to escape a Squirrel VM in games with millions of monthly players – such as Counter-Strike: Global Offensive and Portal 2 – and in cloud services such as Twilio Electric Imp.
https://threatpost.com/squirrel-attackers-execute-code-games-cloud-services/175586/