Apple

tvOS

1890 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2014-4404

Warning
  • EPSS 60.44%
  • Published 18.09.2014 10:55:09
  • Last modified 12.04.2025 10:46:40

Heap-based buffer overflow in IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted key-mapping properties.

9.3

CVE-2014-4405

  • EPSS 1.75%
  • Published 18.09.2014 10:55:09
  • Last modified 12.04.2025 10:46:40

IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via an application that provides crafted key-mapping properties.

4.3

CVE-2014-4407

  • EPSS 0.22%
  • Published 18.09.2014 10:55:09
  • Last modified 12.04.2025 10:46:40

IOKit in Apple iOS before 8 and Apple TV before 7 does not properly initialize kernel memory, which allows attackers to obtain sensitive memory-content information via an application that makes crafted IOKit function calls.

6.9

CVE-2014-4408

  • EPSS 0.04%
  • Published 18.09.2014 10:55:09
  • Last modified 12.04.2025 10:46:40

The rt_setgate function in the kernel in Apple iOS before 8 and Apple TV before 7 allows local users to gain privileges or cause a denial of service (out-of-bounds read and device crash) via a crafted call.

2.1

CVE-2014-4357

  • EPSS 0.08%
  • Published 18.09.2014 10:55:08
  • Last modified 12.04.2025 10:46:40

Accounts Framework in Apple iOS before 8 and Apple TV before 7 allows attackers to obtain sensitive information by reading log data that was not intended to be present in a log.

5.6

CVE-2014-4364

  • EPSS 0.5%
  • Published 18.09.2014 10:55:08
  • Last modified 12.04.2025 10:46:40

The 802.1X subsystem in Apple iOS before 8 and Apple TV before 7 does not require strong authentication methods, which allows remote attackers to calculate credentials by offering LEAP authentication from a crafted Wi-Fi AP and then performing a cryp...

6.8

CVE-2014-1367

  • EPSS 1.17%
  • Published 01.07.2014 10:17:27
  • Last modified 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft...

6.8

CVE-2014-1368

  • EPSS 1.17%
  • Published 01.07.2014 10:17:27
  • Last modified 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft...

6.8

CVE-2014-1382

  • EPSS 1.17%
  • Published 01.07.2014 10:17:27
  • Last modified 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft...

5.5

CVE-2014-1383

  • EPSS 0.15%
  • Published 01.07.2014 10:17:27
  • Last modified 12.04.2025 10:46:40

Apple TV before 6.1.2 allows remote authenticated users to bypass an intended password requirement for iTunes Store purchase transactions via unspecified vectors.