Apple

tvOS

1890 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2016-1811

  • EPSS 1.03%
  • Veröffentlicht 20.05.2016 10:59:23
  • Zuletzt bearbeitet 12.04.2025 10:46:40

ImageIO in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image.

9.3

CVE-2016-1808

  • EPSS 0.35%
  • Veröffentlicht 20.05.2016 10:59:20
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Disk Images subsystem in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted ap...

5.1

CVE-2016-1807

Exploit
  • EPSS 0.13%
  • Veröffentlicht 20.05.2016 10:59:19
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Race condition in the Disk Images subsystem in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows local users to obtain sensitive information from kernel memory via unspecified vectors.

7.8

CVE-2016-1803

Exploit
  • EPSS 6.66%
  • Veröffentlicht 20.05.2016 10:59:15
  • Zuletzt bearbeitet 12.04.2025 10:46:40

CoreCapture in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app.

5.5

CVE-2016-1802

  • EPSS 0.26%
  • Veröffentlicht 20.05.2016 10:59:14
  • Zuletzt bearbeitet 12.04.2025 10:46:40

CCCrypt in CommonCrypto in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 mishandles return values during key-length calculations, which allows attackers to obtain sensitive information via a crafted app.

7.5

CVE-2016-1801

  • EPSS 7.72%
  • Veröffentlicht 20.05.2016 10:59:13
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The CFNetwork Proxies subsystem in Apple iOS before 9.3.2, OS X before 10.11.5, and tvOS before 9.2.1 mishandles URLs in http and https requests, which allows remote attackers to obtain sensitive information via unspecified vectors.

6.5

CVE-2016-1784

  • EPSS 0.94%
  • Veröffentlicht 24.03.2016 01:59:51
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The History implementation in WebKit in Apple iOS before 9.3, Safari before 9.1, and tvOS before 9.2 allows remote attackers to cause a denial of service (resource consumption and application crash) via a crafted web site.

9.3

CVE-2016-1783

  • EPSS 1.66%
  • Veröffentlicht 24.03.2016 01:59:50
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit in Apple iOS before 9.3, Safari before 9.1, and tvOS before 9.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.

9.3

CVE-2016-1775

  • EPSS 0.74%
  • Veröffentlicht 24.03.2016 01:59:42
  • Zuletzt bearbeitet 12.04.2025 10:46:40

TrueTypeScaler in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file.

8.1

CVE-2016-1762

Exploit
  • EPSS 8.58%
  • Veröffentlicht 24.03.2016 01:59:30
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.