VYPR

iOS

by Apple Inc.

CVEs (2,979)

  • CVE-2018-4382Apr 3, 2019
    Apple Inc.
    Safari
    risk 0.04cvss epss 0.19

    Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

  • CVE-2018-4367Apr 3, 2019
    Apple Inc.
    iOS
    risk 0.04cvss epss 0.08

    A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1.

  • CVE-2018-4366Apr 3, 2019
    Apple Inc.
    iOS
    risk 0.04cvss epss 0.11

    A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1.

  • CVE-2019-6205Mar 5, 2019
    Apple Inc.
    macOS
    risk 0.04cvss epss 0.09

    A memory corruption issue was addressed with improved lock state checking. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2. A malicious application may cause unexpected changes in memory shared between processes.

  • CVE-2019-6214Mar 5, 2019
    Apple Inc.
    tvOS
    risk 0.04cvss epss 0.08

    A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3. A malicious application may be able to break out of its sandbox.

  • CVE-2019-6218Mar 5, 2019
    Apple Inc.
    tvOS
    risk 0.04cvss epss 0.06

    A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2. A malicious application may be able to execute arbitrary code with kernel privileges.

  • CVE-2018-4206Jun 8, 2018
    Apple Inc.
    macOS
    risk 0.04cvss epss 0.08

    An issue was discovered in certain Apple products. iOS before 11.3.1 is affected. macOS before 10.13.4 Security Update 2018-001 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "Crash Reporter" component. It allows attackers to…

  • CVE-2015-6996Oct 23, 2015
    Apple Inc.
    watchOS
    risk 0.04cvss epss 0.07

    IOAcceleratorFamily in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted app.

  • CVE-2015-6995Oct 23, 2015
    Apple Inc.
    iOS
    risk 0.04cvss epss 0.12

    The Disk Images component in Apple iOS before 9.1 and OS X before 10.11.1 misparses images, which allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted app.

  • CVE-2015-3796Aug 17, 2015
    Apple Inc.
    iOS
    risk 0.04cvss epss 0.18

    The TRE library in Libc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows context-dependent attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted regular expression, a different vulnerability than…

  • CVE-2012-3748Nov 3, 2012
    Apple Inc.
    Safari
    risk 0.04cvss epss 0.12

    Race condition in WebKit in Apple iOS before 6.0.1 and Safari before 6.0.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving JavaScript arrays.

  • CVE-2021-30955Aug 24, 2021
    Apple Inc.
    watchOS
    risk 0.03cvss epss 0.36

    A race condition was addressed with improved state handling. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2, tvOS 15.2. A malicious application may be able to execute arbitrary code with kernel privileges.

  • CVE-2020-9802Jun 9, 2020
    Apple Inc.
    Safari
    risk 0.03cvss epss 0.41

    A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead…

  • CVE-2019-8663Dec 18, 2019
    Apple Inc.
    iOS
    risk 0.03cvss epss 0.02

    This issue was addressed with improved checks. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6. A remote attacker may be able to leak memory.

  • CVE-2019-8646Dec 18, 2019
    Apple Inc.
    tvOS
    risk 0.03cvss epss 0.05

    An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. A remote attacker may be able to leak memory.

  • CVE-2019-8514Dec 18, 2019
    Apple Inc.
    tvOS
    risk 0.03cvss epss 0.03

    A logic issue was addressed with improved state management. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. An application may be able to gain elevated privileges.

  • CVE-2018-4435Apr 3, 2019
    Apple Inc.
    tvOS
    risk 0.03cvss epss 0.03

    A logic issue was addressed with improved restrictions. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2.

  • CVE-2018-4384Apr 3, 2019
    Apple Inc.
    watchOS
    risk 0.03cvss epss 0.02

    A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1, watchOS 5.1.

  • CVE-2019-6209Mar 5, 2019
    Apple Inc.
    macOS
    risk 0.03cvss epss 0.05

    An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3. A malicious application may be able to determine kernel memory…

  • CVE-2019-6213Mar 5, 2019
    Apple Inc.
    tvOS
    risk 0.03cvss epss 0.04

    A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3. An application may be able to execute arbitrary code with kernel privileges.

Page 44 of 149