Apple

iPhone OS

4053 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 3.42%
  • Veröffentlicht 18.09.2014 10:55:09
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Libnotify in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking on write operations, which allows attackers to execute arbitrary code as root via a crafted application.

  • EPSS 1.46%
  • Veröffentlicht 18.09.2014 10:55:09
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The Assets subsystem in Apple iOS before 8 and Apple TV before 7 allows man-in-the-middle attackers to spoof a device's update status via a crafted Last-Modified HTTP response header.

  • EPSS 0.47%
  • Veröffentlicht 18.09.2014 10:55:09
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Directory traversal vulnerability in the App Installation feature in Apple iOS before 8 allows local users to install unverified apps by triggering code-signature validation of an unintended bundle.

  • EPSS 0.26%
  • Veröffentlicht 18.09.2014 10:55:09
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Race condition in the App Installation feature in Apple iOS before 8 allows local users to gain privileges and install unverified apps by leveraging /tmp write access.

  • EPSS 1.67%
  • Veröffentlicht 18.09.2014 10:55:09
  • Zuletzt bearbeitet 06.05.2026 22:30:45

IOKit in Apple iOS before 8 and Apple TV before 7 does not properly validate IODataQueue object metadata, which allows attackers to execute arbitrary code in a privileged context via an application that provides crafted values in unspecified metadata...

  • EPSS 3.42%
  • Veröffentlicht 18.09.2014 10:55:09
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Integer overflow in IOKit in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted API arguments.

Warnung
  • EPSS 49.05%
  • Veröffentlicht 18.09.2014 10:55:09
  • Zuletzt bearbeitet 21.04.2026 16:22:38

Heap-based buffer overflow in IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted key-mapping properties.

  • EPSS 7.54%
  • Veröffentlicht 18.09.2014 10:55:09
  • Zuletzt bearbeitet 06.05.2026 22:30:45

IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via an application that provides crafted key-mapping properties.

  • EPSS 1.03%
  • Veröffentlicht 18.09.2014 10:55:09
  • Zuletzt bearbeitet 06.05.2026 22:30:45

IOKit in Apple iOS before 8 and Apple TV before 7 does not properly initialize kernel memory, which allows attackers to obtain sensitive memory-content information via an application that makes crafted IOKit function calls.

  • EPSS 0.35%
  • Veröffentlicht 18.09.2014 10:55:09
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The rt_setgate function in the kernel in Apple iOS before 8 and Apple TV before 7 allows local users to gain privileges or cause a denial of service (out-of-bounds read and device crash) via a crafted call.