Apple

tvOS

1924 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2014-4492

Exploit
  • EPSS 24.34%
  • Veröffentlicht 30.01.2015 11:59:21
  • Zuletzt bearbeitet 12.04.2025 10:46:40

libnetcore in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 does not verify that certain values have the expected data type, which allows attackers to execute arbitrary code in an _networkd context via a crafted XPC mes...

10

CVE-2014-4489

  • EPSS 1.02%
  • Veröffentlicht 30.01.2015 11:59:20
  • Zuletzt bearbeitet 12.04.2025 10:46:40

IOHIDFamily in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 does not properly initialize event queues, which allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer...

5

CVE-2014-4491

  • EPSS 0.52%
  • Veröffentlicht 30.01.2015 11:59:20
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The extension APIs in the kernel in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 do not prevent the presence of addresses within an OSBundleMachOHeaders key in a response, which makes it easier for attackers to bypass ...

10

CVE-2014-4488

  • EPSS 1.8%
  • Veröffentlicht 30.01.2015 11:59:19
  • Zuletzt bearbeitet 12.04.2025 10:46:40

IOHIDFamily in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 does not properly validate resource-queue metadata, which allows attackers to execute arbitrary code in a privileged context via a crafted app.

10

CVE-2014-4487

  • EPSS 2.42%
  • Veröffentlicht 30.01.2015 11:59:18
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Buffer overflow in IOHIDFamily in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 allows attackers to execute arbitrary code in a privileged context via a crafted app.

10

CVE-2014-4486

  • EPSS 1.02%
  • Veröffentlicht 30.01.2015 11:59:17
  • Zuletzt bearbeitet 12.04.2025 10:46:40

IOAcceleratorFamily in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 does not properly handle resource lists and IOService userclient types, which allows attackers to execute arbitrary code or cause a denial of service ...

7.5

CVE-2014-4485

  • EPSS 2.98%
  • Veröffentlicht 30.01.2015 11:59:16
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Buffer overflow in the XML parser in Foundation in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted XML docum...

7.5

CVE-2014-4484

  • EPSS 3.23%
  • Veröffentlicht 30.01.2015 11:59:15
  • Zuletzt bearbeitet 12.04.2025 10:46:40

FontParser in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted .dfont file.

6.8

CVE-2014-4483

  • EPSS 2.07%
  • Veröffentlicht 30.01.2015 11:59:14
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Buffer overflow in FontParser in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted font file in a PDF document...

6.8

CVE-2014-4481

  • EPSS 8.61%
  • Veröffentlicht 30.01.2015 11:59:13
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in CoreGraphics in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document.