Apple

iPhone OS

4053 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.53%
  • Veröffentlicht 01.07.2014 10:17:27
  • Zuletzt bearbeitet 06.05.2026 22:30:45

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft...

  • EPSS 2.53%
  • Veröffentlicht 01.07.2014 10:17:27
  • Zuletzt bearbeitet 06.05.2026 22:30:45

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft...

  • EPSS 2.64%
  • Veröffentlicht 01.07.2014 10:17:27
  • Zuletzt bearbeitet 06.05.2026 22:30:45

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft...

  • EPSS 0.36%
  • Veröffentlicht 01.07.2014 10:17:26
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Mail in Apple iOS before 7.1.2 advertises the availability of data protection for attachments but stores cleartext attachments under mobile/Library/Mail/, which makes it easier for physically proximate attackers to obtain sensitive information by mou...

  • EPSS 2.87%
  • Veröffentlicht 01.07.2014 10:17:26
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Use-after-free vulnerability in Safari in Apple iOS before 7.1.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an invalid URL.

  • EPSS 0.39%
  • Veröffentlicht 01.07.2014 10:17:26
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Settings in Apple iOS before 7.1.2 allows physically proximate attackers to bypass an intended iCloud password requirement, and turn off the Find My iPhone service, by leveraging incorrect state management.

  • EPSS 0.39%
  • Veröffentlicht 01.07.2014 10:17:26
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Siri in Apple iOS before 7.1.2 allows physically proximate attackers to bypass an intended lock-screen passcode requirement, and read a contact list, via a Siri request that refers to a contact ambiguously.

  • EPSS 0.34%
  • Veröffentlicht 01.07.2014 10:17:26
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Lock Screen in Apple iOS before 7.1.2 does not properly enforce the limit on failed passcode attempts, which makes it easier for physically proximate attackers to conduct brute-force passcode-guessing attacks via unspecified vectors.

  • EPSS 0.39%
  • Veröffentlicht 01.07.2014 10:17:26
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Lock Screen in Apple iOS before 7.1.2 does not properly manage the telephony state in Airplane Mode, which allows physically proximate attackers to bypass the lock protection mechanism, and access a certain foreground application, via unspecified vec...

  • EPSS 2.85%
  • Veröffentlicht 01.07.2014 10:17:26
  • Zuletzt bearbeitet 06.05.2026 22:30:45

CoreGraphics in Apple iOS before 7.1.2 does not properly restrict allocation of stack memory for processing of XBM images, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted image data...