Apple

tvOS

1890 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2014-1366

  • EPSS 1.17%
  • Published 01.07.2014 10:17:26
  • Last modified 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft...

6.8

CVE-2014-1325

  • EPSS 1.17%
  • Published 01.07.2014 10:17:25
  • Last modified 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft...

6.8

CVE-2014-1295

Exploit
  • EPSS 0.14%
  • Published 23.04.2014 11:52:59
  • Last modified 12.04.2025 10:46:40

Secure Transport in Apple iOS before 7.1.1, Apple OS X 10.8.x and 10.9.x through 10.9.2, and Apple TV before 6.1.1 does not ensure that a server's X.509 certificate is the same during renegotiation as it was before renegotiation, which allows man-in-...

4.3

CVE-2014-1296

  • EPSS 0.21%
  • Published 23.04.2014 11:52:59
  • Last modified 12.04.2025 10:46:40

CFNetwork in Apple iOS before 7.1.1, Apple OS X through 10.9.2, and Apple TV before 6.1.1 does not ensure that a Set-Cookie HTTP header is complete before interpreting the header's value, which allows remote attackers to bypass intended access restri...

4.9

CVE-2014-1320

  • EPSS 0.06%
  • Published 23.04.2014 11:52:59
  • Last modified 12.04.2025 10:46:40

IOKit in Apple iOS before 7.1.1, Apple OS X through 10.9.2, and Apple TV before 6.1.1 places kernel pointers into an object data structure, which makes it easier for local users to bypass the ASLR protection mechanism by reading unspecified attribute...

6.8

CVE-2014-1275

  • EPSS 1.14%
  • Published 14.03.2014 10:55:06
  • Last modified 12.04.2025 10:46:40

Buffer overflow in ImageIO in Apple iOS before 7.1 and Apple TV before 6.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted JPEG2000 data in a PDF document.

7.2

CVE-2014-1278

  • EPSS 0.04%
  • Published 14.03.2014 10:55:06
  • Last modified 12.04.2025 10:46:40

The ptmx_get_ioctl function in the ARM kernel in Apple iOS before 7.1 and Apple TV before 6.1 allows local users to gain privileges or cause a denial of service (out-of-bounds memory access and device crash) via a crafted call.

2.1

CVE-2014-1279

  • EPSS 0.06%
  • Published 14.03.2014 10:55:06
  • Last modified 12.04.2025 10:46:40

Apple TV before 6.1 does not properly restrict logging, which allows local users to obtain sensitive information by reading log data.

7.1

CVE-2014-1280

  • EPSS 0.4%
  • Published 14.03.2014 10:55:06
  • Last modified 12.04.2025 10:46:40

Video Driver in Apple iOS before 7.1 and Apple TV before 6.1 allows remote attackers to cause a denial of service (NULL pointer dereference and device hang) via a crafted video file with MPEG-4 encoding.

5.8

CVE-2014-1282

  • EPSS 0.22%
  • Published 14.03.2014 10:55:06
  • Last modified 12.04.2025 10:46:40

The Profiles component in Apple iOS before 7.1 and Apple TV before 6.1 allows attackers to bypass intended configuration-profile visibility requirements via a long name.