iOS

CVEs (2,979)

• CVE-2017-13904Apr 3, 2018
  Apple Inc.

  macOS
  risk 0.00cvss —epss 0.01

  An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a…

• CVE-2015-7113Dec 11, 2015
  Apple Inc.

  watchOS
  risk 0.00cvss —epss 0.03

  The LaunchServices component in Apple iOS before 9.2 and watchOS before 2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a malformed plist.

• CVE-2015-7107Dec 11, 2015
  Apple Inc.

  Quicklook
  risk 0.00cvss —epss 0.03

  QuickLook in Apple iOS before 9.2 and OS X before 10.11.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted iWork file.

• CVE-2015-7105Dec 11, 2015
  Apple Inc.

  tvOS
  risk 0.00cvss —epss 0.04

  CoreGraphics in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file.

• CVE-2015-7103Dec 11, 2015
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.03

  WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095,…

• CVE-2015-7102Dec 11, 2015
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.03

  WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095,…

• CVE-2015-7101Dec 11, 2015
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.03

  WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095,…

• CVE-2015-7100Dec 11, 2015
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.03

  WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095,…

• CVE-2015-7099Dec 11, 2015
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.03

  WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095,…

• CVE-2015-7097Dec 11, 2015
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.03

  WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095,…

• CVE-2015-7096Dec 11, 2015
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.03

  WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095,…

• CVE-2015-7095Dec 11, 2015
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.03

  WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7096,…

• CVE-2015-7094Dec 11, 2015
  Apple Inc.

  iOS
  risk 0.00cvss —epss 0.01

  CFNetwork HTTPProtocol in Apple iOS before 9.2 and OS X before 10.11.2 allows man-in-the-middle attackers to bypass the HSTS protection mechanism via a crafted URL.

• CVE-2015-7080Dec 11, 2015
  Apple Inc.

  iOS
  risk 0.00cvss —epss 0.00

  Siri in Apple iOS before 9.2 allows physically proximate attackers to bypass an intended client-side protection mechanism and obtain sensitive content-notification information by listening to a device in the lock-screen state.

• CVE-2015-7079Dec 11, 2015
  Apple Inc.

  tvOS
  risk 0.00cvss —epss 0.03

  dyld in Apple iOS before 9.2 and tvOS before 9.1 mishandles segment validation, which allows attackers to execute arbitrary code in a privileged context via a crafted app.

• CVE-2015-7074Dec 11, 2015
  Apple Inc.

  tvOS
  risk 0.00cvss —epss 0.03

  CoreMedia Playback in Apple iOS before 9.2, OS X before 10.11.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a malformed media file.

• CVE-2015-7073Dec 11, 2015
  Apple Inc.

  tvOS
  risk 0.00cvss —epss 0.04

  Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted SSL handshake.

• CVE-2015-7070Dec 11, 2015
  Apple Inc.

  iOS
  risk 0.00cvss —epss 0.02

  Mobile Replayer in GPUTools Framework in Apple iOS before 9.2 allows attackers to execute arbitrary code in a privileged context via an app that provides a crafted pathname, a different vulnerability than CVE-2015-7069.

• CVE-2015-7069Dec 11, 2015
  Apple Inc.

  iOS
  risk 0.00cvss —epss 0.02

  Mobile Replayer in GPUTools Framework in Apple iOS before 9.2 allows attackers to execute arbitrary code in a privileged context via an app that provides a crafted pathname, a different vulnerability than CVE-2015-7070.

• CVE-2015-7066Dec 11, 2015
  Apple Inc.

  tvOS
  risk 0.00cvss —epss 0.03

  OpenGL in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2015-7064.