Apple

tvOS

1924 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2014-4469

  • EPSS 0.84%
  • Veröffentlicht 10.12.2014 21:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnera...

6.8

CVE-2014-4468

  • EPSS 0.84%
  • Veröffentlicht 10.12.2014 21:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnera...

7.5

CVE-2014-4466

  • EPSS 1.01%
  • Veröffentlicht 10.12.2014 21:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnera...

5

CVE-2014-4465

  • EPSS 0.98%
  • Veröffentlicht 10.12.2014 21:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1 allows remote attackers to bypass the Same Origin Policy via crafted Cascading Style Sheets (CSS) token sequences within an SVG file in the SRC attribute of an IMG element.

5.8

CVE-2014-4462

  • EPSS 1.27%
  • Veröffentlicht 18.11.2014 11:59:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 8.1.1 and Apple TV before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2...

9.3

CVE-2014-4461

  • EPSS 1.86%
  • Veröffentlicht 18.11.2014 11:59:08
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The kernel in Apple iOS before 8.1.1 and Apple TV before 7.0.2 does not properly validate IOSharedDataQueue object metadata, which allows attackers to execute arbitrary code in a privileged context via a crafted application.

6.8

CVE-2014-4459

  • EPSS 2.97%
  • Veröffentlicht 18.11.2014 11:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in WebKit, as used in Apple OS X before 10.10.1, allows remote attackers to execute arbitrary code via crafted page objects in an HTML document.

2.1

CVE-2014-4455

  • EPSS 0.06%
  • Veröffentlicht 18.11.2014 11:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

dyld in Apple iOS before 8.1.1 and Apple TV before 7.0.2 does not properly handle overlapping segments in Mach-O executable files, which allows local users to bypass intended code-signing restrictions via a crafted file.

5.4

CVE-2014-4452

  • EPSS 1.07%
  • Veröffentlicht 18.11.2014 11:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 8.1.1 and Apple TV before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2...

7.5

CVE-2014-3192

  • EPSS 1.74%
  • Veröffentlicht 08.10.2014 10:55:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in the ProcessingInstruction::setXSLStyleSheet function in core/dom/ProcessingInstruction.cpp in the DOM implementation in Blink, as used in Google Chrome before 38.0.2125.101, allows remote attackers to cause a denial of...