Apple

iPhone OS

3839 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2015-3797

  • EPSS 0.88%
  • Veröffentlicht 17.08.2015 00:00:11
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The TRE library in Libc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows context-dependent attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted regular expression, a differen...

7.5

CVE-2015-3796

  • EPSS 14.69%
  • Veröffentlicht 17.08.2015 00:00:10
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The TRE library in Libc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows context-dependent attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted regular expression, a differen...

9.3

CVE-2015-3795

  • EPSS 1.58%
  • Veröffentlicht 17.08.2015 00:00:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

libxpc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app that sends a malformed XPC message.

4.3

CVE-2015-3793

  • EPSS 0.3%
  • Veröffentlicht 17.08.2015 00:00:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

CFPreferences in Apple iOS before 8.4.1 allows attackers to bypass the third-party app-sandbox protection mechanism and read arbitrary managed preferences via a crafted app.

5

CVE-2015-3784

  • EPSS 0.87%
  • Veröffentlicht 16.08.2015 23:59:56
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Office Viewer in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (...

4.3

CVE-2015-3782

  • EPSS 0.52%
  • Veröffentlicht 16.08.2015 23:59:55
  • Zuletzt bearbeitet 12.04.2025 10:46:40

CloudKit in Apple iOS before 8.4.1 and OS X before 10.10.5 allows attackers to access an iCloud user record associated with a previous user's login session via a crafted app.

3.3

CVE-2015-3778

  • EPSS 0.35%
  • Veröffentlicht 16.08.2015 23:59:51
  • Zuletzt bearbeitet 12.04.2025 10:46:40

bootp in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to obtain potentially sensitive information about MAC addresses seen in previous Wi-Fi sessions by sniffing an 802.11 network for DNAv4 broadcast traffic.

9.3

CVE-2015-3776

  • EPSS 1.08%
  • Veröffentlicht 16.08.2015 23:59:49
  • Zuletzt bearbeitet 12.04.2025 10:46:40

IOKit in Apple iOS before 8.4.1 and OS X before 10.10.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption and application crash) via a malformed plist.

9.3

CVE-2015-3768

  • EPSS 1.01%
  • Veröffentlicht 16.08.2015 23:59:41
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in the kernel in Apple iOS before 8.4.1 and OS X before 10.10.5 allows attackers to execute arbitrary code in a privileged context via a crafted app that makes unspecified IOKit API calls.

4.3

CVE-2015-3766

  • EPSS 0.52%
  • Veröffentlicht 16.08.2015 23:59:39
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The kernel in Apple iOS before 8.4.1 and OS X before 10.10.5 does not properly restrict the mach_port_space_info interface, which allows attackers to obtain sensitive memory-layout information via a crafted app.