iOS

CVEs (478)

• CVE-2019-6234Mar 5, 2019
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.01

  A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.

• CVE-2019-6226Mar 5, 2019
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.01

  Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, watchOS 5.1.3, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.

• CVE-2019-6211Mar 5, 2019
  Apple Inc.

  macOS
  risk 0.00cvss —epss 0.01

  A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3. Processing maliciously crafted web content may lead to arbitrary code execution.

• CVE-2019-6227Mar 5, 2019
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.01

  A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, watchOS 5.1.3, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.

• CVE-2019-6228Mar 5, 2019
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.00

  A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue is fixed in iOS 12.1.3, Safari 12.0.3. Processing maliciously crafted web content may lead to a cross site scripting attack.

• CVE-2019-6219Mar 5, 2019
  Apple Inc.

  macOS
  risk 0.00cvss —epss 0.01

  A denial of service issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, watchOS 5.1.3. Processing a maliciously crafted message may lead to a denial of service.

• CVE-2019-6216Mar 5, 2019
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.01

  Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, watchOS 5.1.3, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.

• CVE-2019-6229Mar 5, 2019
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.01

  A logic issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to universal cross site scripting.

• CVE-2019-6233Mar 5, 2019
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.01

  A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.

• CVE-2019-6202Mar 5, 2019
  Apple Inc.

  macOS
  risk 0.00cvss —epss 0.00

  An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, watchOS 5.1.3. A malicious application may be able to elevate privileges.

• CVE-2019-6221Mar 5, 2019
  Apple Inc.

  macOS
  risk 0.00cvss —epss 0.00

  An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, iTunes 12.9.3 for Windows. A malicious application may be able to elevate privileges.

• CVE-2019-6200Mar 5, 2019
  Apple Inc.

  macOS
  risk 0.00cvss —epss 0.00

  An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3. An attacker in a privileged network position may be able to execute arbitrary code.

• CVE-2019-6231Mar 5, 2019
  Apple Inc.

  macOS
  risk 0.00cvss —epss 0.00

  An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3. A malicious application may be able to read restricted memory.

• CVE-2019-6210Mar 5, 2019
  Apple Inc.

  macOS
  risk 0.00cvss —epss 0.00

  A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3. A malicious application may be able to execute arbitrary code with kernel privileges.

• CVE-2019-6212Mar 5, 2019
  Apple Inc.

  Safari
  risk 0.00cvss —epss 0.01

  Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.

• CVE-2019-6230Mar 5, 2019
  Apple Inc.

  macOS
  risk 0.00cvss —epss 0.00

  A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3,macOS Mojave 10.14.3,tvOS 12.1.2,watchOS 5.1.3. A malicious application may be able to break out of its sandbox.

• CVE-2019-6235Mar 4, 2019
  Apple Inc.

  macOS
  risk 0.00cvss —epss 0.01

  A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3, iTunes 12.9.3 for Windows. A sandboxed process may be able to circumvent sandbox restrictions.

• CVE-2018-5383Aug 7, 2018
  Apple Inc.

  macOS
  risk 0.00cvss —epss 0.00

  Bluetooth firmware or operating system software drivers in macOS versions before 10.13, High Sierra and iOS versions before 11.4, and Android versions before the 2018-06-05 patch may not sufficiently validate elliptic curve parameters used to generate public keys during a Diffie-Hellman key exchange, which may allow a remote attacker to obtain the encryption key used by the device.