Apple

tvOS

1924 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2015-1072

  • EPSS 0.79%
  • Veröffentlicht 18.03.2015 22:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnera...

6.8

CVE-2015-1071

  • EPSS 0.81%
  • Veröffentlicht 18.03.2015 22:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnera...

6.8

CVE-2015-1070

  • EPSS 0.79%
  • Veröffentlicht 18.03.2015 22:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnera...

6.8

CVE-2015-1069

  • EPSS 0.87%
  • Veröffentlicht 18.03.2015 22:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnera...

6.8

CVE-2015-1068

  • EPSS 0.85%
  • Veröffentlicht 18.03.2015 22:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnera...

5

CVE-2015-1062

  • EPSS 0.34%
  • Veröffentlicht 12.03.2015 10:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

MobileStorageMounter in Apple iOS before 8.2 and Apple TV before 7.1 does not delete invalid disk-image folders, which allows attackers to create folders in arbitrary filesystem locations via a crafted app.

9.3

CVE-2015-1061

  • EPSS 5.41%
  • Veröffentlicht 12.03.2015 10:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

IOSurface in Apple iOS before 8.2, Apple OS X through 10.10.2, and Apple TV before 7.1 allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages "type confusion" during serialized-object handling.

4.3

CVE-2015-1067

Exploit
  • EPSS 4.8%
  • Veröffentlicht 11.03.2015 01:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Secure Transport in Apple iOS before 8.2, Apple OS X through 10.10.2, and Apple TV before 7.1 does not properly restrict TLS state transitions, which makes it easier for remote attackers to conduct cipher-downgrade attacks to EXPORT_RSA ciphers via c...

5

CVE-2014-4496

  • EPSS 0.66%
  • Veröffentlicht 30.01.2015 11:59:25
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The mach_port_kobject interface in the kernel in Apple iOS before 8.1.3 and Apple TV before 7.0.3 does not properly restrict kernel-address and heap-permutation information, which makes it easier for attackers to bypass the ASLR protection mechanism ...

10

CVE-2014-4495

  • EPSS 0.83%
  • Veröffentlicht 30.01.2015 11:59:24
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The kernel in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 does not enforce the read-only attribute of a shared memory segment during use of a custom cache mode, which allows attackers to bypass intended access restric...