CVE-2014-2019
- EPSS 0.46%
- Veröffentlicht 18.02.2014 11:55:17
- Zuletzt bearbeitet 29.04.2026 01:13:23
The iCloud subsystem in Apple iOS before 7.1 allows physically proximate attackers to bypass an intended password requirement, and turn off the Find My iPhone service or complete a Delete Account action and then associate this service with a differen...
CVE-2014-1252
- EPSS 4.17%
- Veröffentlicht 24.01.2014 15:08:00
- Zuletzt bearbeitet 29.04.2026 01:13:23
Double free vulnerability in Apple Pages 2.x before 2.1 and 5.x before 5.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Microsoft Word file.
CVE-2013-0340
- EPSS 19.43%
- Veröffentlicht 21.01.2014 18:55:09
- Zuletzt bearbeitet 29.04.2026 01:13:23
expat before version 2.4.0 does not properly handle entities expansion unless an application developer uses the XML_SetEntityDeclHandler function, which allows remote attackers to cause a denial of service (resource consumption), send HTTP requests t...
CVE-2013-5198
- EPSS 2.16%
- Veröffentlicht 18.12.2013 16:04:33
- Zuletzt bearbeitet 29.04.2026 01:13:23
WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other W...
CVE-2013-5199
- EPSS 2.2%
- Veröffentlicht 18.12.2013 16:04:33
- Zuletzt bearbeitet 29.04.2026 01:13:23
WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other W...
CVE-2013-5225
- EPSS 2.14%
- Veröffentlicht 18.12.2013 16:04:33
- Zuletzt bearbeitet 29.04.2026 01:13:23
WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other W...
CVE-2013-5228
- EPSS 2.15%
- Veröffentlicht 18.12.2013 16:04:33
- Zuletzt bearbeitet 29.04.2026 01:13:23
WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other W...
CVE-2013-5196
- EPSS 2.14%
- Veröffentlicht 18.12.2013 16:04:28
- Zuletzt bearbeitet 29.04.2026 01:13:23
WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other W...
CVE-2013-5197
- EPSS 2.14%
- Veröffentlicht 18.12.2013 16:04:28
- Zuletzt bearbeitet 29.04.2026 01:13:23
WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other W...
CVE-2013-5193
- EPSS 0.26%
- Veröffentlicht 18.11.2013 02:55:09
- Zuletzt bearbeitet 29.04.2026 01:13:23
The App Store component in Apple iOS before 7.0.4 does not properly enforce an intended transaction-time password requirement, which allows local users to complete a (1) App purchase or (2) In-App purchase by leveraging previous entry of Apple ID cre...