VYPR

Iphone OS

by Apple Inc.

CVEs (2,060)

  • CVE-2015-5792Sep 18, 2015
    risk 0.00cvss epss 0.03

    WebKit, as used in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in…

  • CVE-2015-5791Sep 18, 2015
    risk 0.00cvss epss 0.03

    WebKit, as used in JavaScriptCore in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs…

  • CVE-2015-5790Sep 18, 2015
    risk 0.00cvss epss 0.03

    WebKit, as used in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in…

  • CVE-2015-5789Sep 18, 2015
    risk 0.00cvss epss 0.03

    WebKit, as used in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in…

  • CVE-2015-5788Sep 18, 2015
    risk 0.00cvss epss 0.02

    The WebKit Canvas implementation in Apple iOS before 9 allows remote attackers to bypass the Same Origin Policy and obtain sensitive image information via vectors involving a CANVAS element.

  • CVE-2015-5767Sep 18, 2015
    risk 0.00cvss epss 0.02

    The user interface in Safari in Apple iOS before 9 allows remote attackers to spoof URLs via unspecified vectors, a different vulnerability than CVE-2015-5764 and CVE-2015-5765.

  • CVE-2015-5765Sep 18, 2015
    risk 0.00cvss epss 0.02

    The user interface in Safari in Apple iOS before 9 allows remote attackers to spoof URLs via unspecified vectors, a different vulnerability than CVE-2015-5764 and CVE-2015-5767.

  • CVE-2015-5764Sep 18, 2015
    risk 0.00cvss epss 0.03

    The user interface in Safari in Apple iOS before 9 allows remote attackers to spoof URLs via unspecified vectors, a different vulnerability than CVE-2015-5765 and CVE-2015-5767.

  • CVE-2015-3801Sep 18, 2015
    risk 0.00cvss epss 0.02

    The document.cookie API implementation in the CFNetwork Cookies subsystem in WebKit in Apple iOS before 9 allows remote attackers to bypass an intended single-cookie restriction via unspecified vectors.

  • CVE-2014-8611Sep 18, 2015
    risk 0.00cvss epss 0.00

    The __sflush function in fflush.c in stdio in libc in FreeBSD 10.1 and the kernel in Apple iOS before 9 mishandles failures of the write system call, which allows context-dependent attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow) via…

  • CVE-2015-5782Aug 17, 2015
    risk 0.00cvss epss 0.02

    ImageIO in Apple iOS before 8.4.1 and OS X before 10.10.5 does not properly initialize an unspecified data structure, which allows remote attackers to obtain sensitive information from process memory via a crafted TIFF image.

  • CVE-2015-5781Aug 17, 2015
    risk 0.00cvss epss 0.02

    ImageIO in Apple iOS before 8.4.1 and OS X before 10.10.5 does not properly initialize an unspecified data structure, which allows remote attackers to obtain sensitive information from process memory via a crafted PNG image.

  • CVE-2015-5778Aug 17, 2015
    risk 0.00cvss epss 0.03

    CoreMedia Playback in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-5777.

  • CVE-2015-5777Aug 17, 2015
    risk 0.00cvss epss 0.03

    CoreMedia Playback in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-5778.

  • CVE-2015-5776Aug 17, 2015
    risk 0.00cvss epss 0.04

    Libinfo in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by leveraging use of an AF_INET6 socket.

  • CVE-2015-5775Aug 17, 2015
    risk 0.00cvss epss 0.04

    FontParser in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted font file, a different vulnerability than CVE-2015-3804 and CVE-2015-5756.

  • CVE-2015-5774Aug 17, 2015
    risk 0.00cvss epss 0.00

    Buffer overflow in IOHIDFamily in Apple iOS before 8.4.1 and OS X before 10.10.5 allows local users to gain privileges via unspecified vectors.

  • CVE-2015-5773Aug 17, 2015
    risk 0.00cvss epss 0.03

    QL Office in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted office document.

  • CVE-2015-5770Aug 17, 2015
    risk 0.00cvss epss 0.01

    MobileInstallation in Apple iOS before 8.4.1 does not ensure the uniqueness of universal provisioning profile bundle IDs, which allows attackers to replace arbitrary extensions via a crafted enterprise app.

  • CVE-2015-5769Aug 17, 2015
    risk 0.00cvss epss 0.02

    The MSVDX driver in Apple iOS before 8.4.1 allows remote attackers to cause a denial of service (device crash) via a crafted video.

Page 69 of 103