- EPSS 1.95%
- Veröffentlicht 18.09.2015 12:00:44
- Zuletzt bearbeitet 06.05.2026 22:30:45
Safari in Apple iOS before 9 allows remote attackers to spoof the relationship between URLs and web content via a crafted window opener on a web site.
CVE-2015-5904
- EPSS 1.43%
- Veröffentlicht 18.09.2015 12:00:42
- Zuletzt bearbeitet 06.05.2026 22:30:45
Safari in Apple iOS before 9 allows remote attackers to spoof the relationship between URLs and web content via a crafted web site.
- EPSS 2.2%
- Veröffentlicht 18.09.2015 12:00:30
- Zuletzt bearbeitet 06.05.2026 22:30:45
The kernel in Apple iOS before 9 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5868 and CVE-2015-5896.
CVE-2015-5899
- EPSS 0.34%
- Veröffentlicht 18.09.2015 12:00:28
- Zuletzt bearbeitet 06.05.2026 22:30:45
libpthread in the kernel in Apple iOS before 9 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
CVE-2015-5898
- EPSS 0.25%
- Veröffentlicht 18.09.2015 12:00:26
- Zuletzt bearbeitet 06.05.2026 22:30:45
CFNetwork in Apple iOS before 9 relies on the hardware UID for its cache encryption key, which makes it easier for physically proximate attackers to obtain sensitive information by obtaining this UID.
CVE-2015-5896
- EPSS 0.34%
- Veröffentlicht 18.09.2015 12:00:25
- Zuletzt bearbeitet 06.05.2026 22:30:45
The kernel in Apple iOS before 9 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5868 and CVE-2015-5903.
CVE-2015-5892
- EPSS 0.37%
- Veröffentlicht 18.09.2015 12:00:23
- Zuletzt bearbeitet 06.05.2026 22:30:45
Siri in Apple iOS before 9 allows physically proximate attackers to bypass an intended client-side protection mechanism and obtain sensitive content-notification information by listening to a device in the lock-screen state.
- EPSS 2.26%
- Veröffentlicht 18.09.2015 12:00:22
- Zuletzt bearbeitet 06.05.2026 22:30:45
The CFNetwork Cookies component in Apple iOS before 9 allows remote attackers to track users via vectors involving a cookie for a top-level domain.
CVE-2015-5882
- EPSS 0.33%
- Veröffentlicht 18.09.2015 12:00:21
- Zuletzt bearbeitet 06.05.2026 22:30:45
The processor_set_tasks API implementation in Apple iOS before 9 allows local users to bypass an entitlement protection mechanism and obtain access to the task ports of arbitrary processes by leveraging root privileges.
CVE-2015-5880
- EPSS 1.37%
- Veröffentlicht 18.09.2015 12:00:19
- Zuletzt bearbeitet 06.05.2026 22:30:45
CoreAnimation in Apple iOS before 9 allows attackers to bypass intended IOSurface restrictions and obtain screen-framebuffer access via a crafted background app.