Apple

iPhone OS

3839 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2017-7024

  • EPSS 0.31%
  • Veröffentlicht 20.07.2017 16:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. watchOS before 3.2.3 is affected. The issue involves the "Kernel" component. It allows attackers to ex...

9.3

CVE-2017-7025

  • EPSS 0.31%
  • Veröffentlicht 20.07.2017 16:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. watchOS before 3.2.3 is affected. The issue involves the "Kernel" component. It allows attackers to ex...

9.3

CVE-2017-7026

  • EPSS 0.18%
  • Veröffentlicht 20.07.2017 16:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. watchOS before 3.2.3 is affected. The issue involves the "Kernel" component. It allows attackers to ex...

8.1

CVE-2017-11103

  • EPSS 5.77%
  • Veröffentlicht 13.07.2017 13:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Heimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification. In _krb5_extract_ticket() the KDC-REP service name ...

8.8

CVE-2017-2491

  • EPSS 21.69%
  • Veröffentlicht 27.06.2017 20:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Use after free vulnerability in the String.replace method JavaScriptCore in Apple Safari in iOS before 10.3 allows remote attackers to execute arbitrary code via a crafted web page, or a crafted file.

8.8

CVE-2016-9840

  • EPSS 13%
  • Veröffentlicht 23.05.2017 04:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.

9.8

CVE-2016-9841

  • EPSS 20.28%
  • Veröffentlicht 23.05.2017 04:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.

8.8

CVE-2016-9842

  • EPSS 12.09%
  • Veröffentlicht 23.05.2017 04:29:01
  • Zuletzt bearbeitet 04.12.2025 17:15:51

The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.

9.8

CVE-2016-9843

  • EPSS 6.98%
  • Veröffentlicht 23.05.2017 04:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.

5.5

CVE-2017-6987

  • EPSS 0.24%
  • Veröffentlicht 22.05.2017 05:29:03
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "Kernel" component. It allows attackers to by...