Apple

tvOS

1890 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2019-7285

  • EPSS 1.28%
  • Veröffentlicht 18.12.2019 18:15:21
  • Zuletzt bearbeitet 21.11.2024 04:47:55

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code e...

9.3

CVE-2019-6201

  • EPSS 0.88%
  • Veröffentlicht 18.12.2019 18:15:20
  • Zuletzt bearbeitet 21.11.2024 04:46:10

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitr...

7.4

CVE-2019-14899

  • EPSS 0.05%
  • Veröffentlicht 11.12.2019 15:15:14
  • Zuletzt bearbeitet 21.11.2024 04:27:38

A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make positive inferences about the websites they are visiti...

5.3

CVE-2019-15165

  • EPSS 1.19%
  • Veröffentlicht 03.10.2019 19:15:09
  • Zuletzt bearbeitet 21.11.2024 04:28:11

sf-pcapng.c in libpcap before 1.9.1 does not properly validate the PHB header length before allocating memory.

8.1

CVE-2019-9506

  • EPSS 3.04%
  • Veröffentlicht 14.08.2019 17:15:11
  • Zuletzt bearbeitet 21.11.2024 04:51:45

The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka "KNOB") tha...

5.3

CVE-2019-13118

  • EPSS 1.21%
  • Veröffentlicht 01.07.2019 02:15:09
  • Zuletzt bearbeitet 21.11.2024 04:24:13

In numbers.c in libxslt 1.1.33, a type holding grouping characters of an xsl:number instruction was too narrow and an invalid character/length combination could be passed to xsltNumberFormatDecimal, leading to a read of uninitialized stack data.

6.5

CVE-2018-4460

  • EPSS 0.7%
  • Veröffentlicht 03.04.2019 18:29:17
  • Zuletzt bearbeitet 21.11.2024 04:07:26

A denial of service issue was addressed by removing the vulnerable code. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2.

9.3

CVE-2018-4461

  • EPSS 0.19%
  • Veröffentlicht 03.04.2019 18:29:17
  • Zuletzt bearbeitet 21.11.2024 04:07:26

A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2.

8.8

CVE-2018-4464

  • EPSS 0.75%
  • Veröffentlicht 03.04.2019 18:29:17
  • Zuletzt bearbeitet 21.11.2024 04:07:26

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.

8.8

CVE-2018-4441

  • EPSS 56.61%
  • Veröffentlicht 03.04.2019 18:29:16
  • Zuletzt bearbeitet 21.11.2024 04:07:24

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.