Apple

iPhone OS

4053 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.05%
  • Veröffentlicht 11.12.2015 11:59:08
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to cause a denial of service via a crafted app, a different vulnerability than CVE-2015-7040, CVE-2015-7041, and CVE-2015-7042.

  • EPSS 2.05%
  • Veröffentlicht 11.12.2015 11:59:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to cause a denial of service via a crafted app, a different vulnerability than CVE-2015-7040, CVE-2015-7041, and CVE-2015-7043.

  • EPSS 2.05%
  • Veröffentlicht 11.12.2015 11:59:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to cause a denial of service via a crafted app, a different vulnerability than CVE-2015-7040, CVE-2015-7042, and CVE-2015-7043.

  • EPSS 2.05%
  • Veröffentlicht 11.12.2015 11:59:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to cause a denial of service via a crafted app, a different vulnerability than CVE-2015-7041, CVE-2015-7042, and CVE-2015-7043.

  • EPSS 11.3%
  • Veröffentlicht 11.12.2015 11:59:04
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Buffer overflow in libc in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code via a crafted package, a different vulnerability than CVE-2015-7038.

  • EPSS 4.42%
  • Veröffentlicht 11.12.2015 11:59:02
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Buffer overflow in libc in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code via a crafted package, a different vulnerability than CVE-2015-7039.

  • EPSS 2.05%
  • Veröffentlicht 11.12.2015 11:59:01
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Directory traversal vulnerability in Mobile Backup in Photos in Apple iOS before 9.2 allows attackers to read arbitrary files via a crafted pathname.

  • EPSS 2.04%
  • Veröffentlicht 11.12.2015 11:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

AppSandbox in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 mishandles hard links, which allows attackers to bypass Contacts access revocation via a crafted app.

  • EPSS 39.29%
  • Veröffentlicht 22.11.2015 03:59:02
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The fts3_tokenizer function in SQLite, as used in Apple iOS before 8.4 and OS X before 10.10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a SQL command that triggers an API call with a craf...

  • EPSS 1.45%
  • Veröffentlicht 22.11.2015 03:59:01
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The CFNetwork HTTPProtocol component in Apple iOS before 9 and OS X before 10.11 does not properly recognize the HSTS preload list during a Safari private-browsing session, which makes it easier for remote attackers to obtain sensitive information by...