Apple

tvOS

2010 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.42%
  • Veröffentlicht 25.09.2016 10:59:32
  • Zuletzt bearbeitet 06.05.2026 22:30:45

WebKit in Apple iOS before 10, tvOS before 10, iTunes before 12.5.1 on Windows, and Safari before 10 mishandles error prototypes, which allows remote attackers to execute arbitrary code via a crafted web site.

  • EPSS 1.57%
  • Veröffentlicht 25.09.2016 10:59:30
  • Zuletzt bearbeitet 06.05.2026 22:30:45

IOAcceleratorFamily in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

  • EPSS 1.5%
  • Veröffentlicht 25.09.2016 10:59:29
  • Zuletzt bearbeitet 06.05.2026 22:30:45

IOAcceleratorFamily in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (memory corruption) via a crafted web site.

  • EPSS 2.58%
  • Veröffentlicht 25.09.2016 10:59:25
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Buffer overflow in FontParser in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to obtain sensitive information from process memory via a crafted font file.

  • EPSS 1.63%
  • Veröffentlicht 25.09.2016 10:59:19
  • Zuletzt bearbeitet 06.05.2026 22:30:45

CoreCrypto in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via a crafted app.

  • EPSS 3.9%
  • Veröffentlicht 25.09.2016 10:59:15
  • Zuletzt bearbeitet 06.05.2026 22:30:45

CFNetwork in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 misparses the Set-Cookie header, which allows remote attackers to obtain sensitive information via a crafted HTTP response.

  • EPSS 5.76%
  • Veröffentlicht 25.09.2016 10:59:11
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Audio in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

  • EPSS 8.63%
  • Veröffentlicht 25.09.2016 10:59:02
  • Zuletzt bearbeitet 06.05.2026 22:30:45

xpointer.c in libxml2 before 2.9.5 (as used in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3, and other products) does not forbid namespace nodes in XPointer ranges, which allows remote attackers to execute arbitrary co...

  • EPSS 1.57%
  • Veröffentlicht 25.09.2016 10:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

WebKit in Apple iOS before 10, Safari before 10, and tvOS before 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-4730, CVE-2016-4733...

  • EPSS 2.27%
  • Veröffentlicht 23.07.2016 19:59:13
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the XPointer range-to function.