Apple

iTunes

922 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2015-5928

  • EPSS 1.01%
  • Published 23.10.2015 21:59:04
  • Last modified 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 9.1, Safari before 9.0.1, and iTunes before 12.3.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulne...

7.5

CVE-2015-7017

  • EPSS 2.13%
  • Published 23.10.2015 10:59:12
  • Last modified 12.04.2025 10:46:40

CoreText in Apple iOS before 9.1, OS X before 10.11.1, and iTunes before 12.3.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file, a different vulnerability than CVE-2015-6975 a...

7.5

CVE-2015-6992

  • EPSS 2.13%
  • Published 23.10.2015 10:59:06
  • Last modified 12.04.2025 10:46:40

CoreText in Apple iOS before 9.1, OS X before 10.11.1, and iTunes before 12.3.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file, a different vulnerability than CVE-2015-6975 a...

7.5

CVE-2015-6975

  • EPSS 2.13%
  • Published 23.10.2015 10:59:00
  • Last modified 12.04.2025 10:46:40

CoreText in Apple iOS before 9.1, OS X before 10.11.1, and iTunes before 12.3.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file, a different vulnerability than CVE-2015-6992 a...

4.3

CVE-2015-5920

  • EPSS 0.3%
  • Published 18.09.2015 12:00:59
  • Last modified 12.04.2025 10:46:40

The Software Update component in Apple iTunes before 12.3 does not properly handle redirection, which allows man-in-the-middle attackers to discover encrypted SMB credentials via unspecified vectors.

7.5

CVE-2015-5874

  • EPSS 3.21%
  • Published 18.09.2015 12:00:16
  • Last modified 12.04.2025 10:46:40

CoreText in Apple iOS before 9 and iTunes before 12.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file.

6.8

CVE-2015-5823

  • EPSS 1.54%
  • Published 18.09.2015 10:59:42
  • Last modified 12.04.2025 10:46:40

WebKit, as used in JavaScriptCore in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability...

6.8

CVE-2015-5822

  • EPSS 1.01%
  • Published 18.09.2015 10:59:41
  • Last modified 12.04.2025 10:46:40

WebKit, as used in JavaScriptCore in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability...

6.8

CVE-2015-5821

  • EPSS 1.54%
  • Published 18.09.2015 10:59:40
  • Last modified 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit...

6.8

CVE-2015-5819

  • EPSS 1.54%
  • Published 18.09.2015 10:59:38
  • Last modified 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit...