Apple

iTunes

922 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2015-3730

  • EPSS 1.08%
  • Published 16.08.2015 23:59:02
  • Last modified 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site...

6.8

CVE-2015-3688

  • EPSS 2.64%
  • Published 03.07.2015 01:59:43
  • Last modified 12.04.2025 10:46:40

CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015-3685, CVE-2015-3686, CVE-2015...

6.8

CVE-2015-3687

  • EPSS 2.64%
  • Published 03.07.2015 01:59:42
  • Last modified 12.04.2025 10:46:40

CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015-3685, CVE-2015-3686, CVE-2015...

6.8

CVE-2015-3686

  • EPSS 2.64%
  • Published 03.07.2015 01:59:41
  • Last modified 12.04.2025 10:46:40

CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015-3685, CVE-2015-3687, CVE-2015...

7.8

CVE-2015-1157

Exploit
  • EPSS 3.1%
  • Published 28.05.2015 01:59:00
  • Last modified 12.04.2025 10:46:40

CoreText in Apple iOS 8.x through 8.3 allows remote attackers to cause a denial of service (reboot and messaging disruption) via crafted Unicode text that is not properly handled during display truncation in the Notifications feature, as demonstrated...

7.5

CVE-2014-8146

Exploit
  • EPSS 40.13%
  • Published 25.05.2015 22:59:00
  • Last modified 12.04.2025 10:46:40

The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 does not properly track directionally isolated pieces of text, which allows ...

6.8

CVE-2015-1154

  • EPSS 1.16%
  • Published 08.05.2015 00:59:02
  • Last modified 12.04.2025 10:46:40

WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnera...

6.8

CVE-2015-1153

  • EPSS 0.89%
  • Published 08.05.2015 00:59:01
  • Last modified 12.04.2025 10:46:40

WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnera...

6.8

CVE-2015-1152

  • EPSS 0.99%
  • Published 08.05.2015 00:59:00
  • Last modified 12.04.2025 10:46:40

WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnera...

6.8

CVE-2015-1124

  • EPSS 0.91%
  • Published 10.04.2015 14:59:38
  • Last modified 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 8.3, Apple TV before 7.2, and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application cra...