Apple

iPhone OS

3848 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2011-2359

  • EPSS 4.4%
  • Veröffentlicht 03.08.2011 00:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 13.0.782.107 does not properly track line boxes during rendering, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."

6.8

CVE-2011-2788

  • EPSS 3.15%
  • Veröffentlicht 03.08.2011 00:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Buffer overflow in the inspector serialization functionality in Google Chrome before 13.0.782.107 allows user-assisted remote attackers to have an unspecified impact via unknown vectors.

6.8

CVE-2011-2790

  • EPSS 2.01%
  • Veröffentlicht 03.08.2011 00:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving floating styles.

9.3

CVE-2011-0226

  • EPSS 10.65%
  • Veröffentlicht 19.07.2011 22:55:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer signedness error in psaux/t1decode.c in FreeType before 2.4.6, as used in CoreGraphics in Apple iOS before 4.2.9 and 4.3.x before 4.3.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory...

7.2

CVE-2011-0227

  • EPSS 0.15%
  • Veröffentlicht 19.07.2011 22:55:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The queueing primitives in IOMobileFrameBuffer in Apple iOS before 4.2.9 and 4.3.x before 4.3.4 do not properly perform type conversion, which allows local users to gain privileges via a crafted application.

6.8

CVE-2011-2351

  • EPSS 2.01%
  • Veröffentlicht 29.06.2011 17:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG use elements.

6.8

CVE-2011-1449

Exploit
  • EPSS 2.34%
  • Veröffentlicht 03.05.2011 22:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the WebSockets implementation in Google Chrome before 11.0.696.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

7.5

CVE-2011-1451

  • EPSS 2.27%
  • Veröffentlicht 03.05.2011 22:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 11.0.696.57 does not properly handle DOM id maps, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "dangling pointers."

4.3

CVE-2011-0195

  • EPSS 0.71%
  • Veröffentlicht 15.04.2011 19:55:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The generate-id XPath function in libxslt in Apple iOS 4.3.x before 4.3.2 allows remote attackers to obtain potentially sensitive information about heap memory addresses via a crafted web site. NOTE: this may overlap CVE-2011-1202.

7.5

CVE-2011-1295

  • EPSS 2.29%
  • Veröffentlicht 25.03.2011 19:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit, as used in Google Chrome before 10.0.648.204 and Apple Safari before 5.0.6, does not properly handle node parentage, which allows remote attackers to cause a denial of service (DOM tree corruption), conduct cross-site scripting (XSS) attacks,...