Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple iphone os 9.1 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2015-6997
The X.509 certificate-trust implementation in Apple iOS prior to 9.1 does not recognize that the kSecRevocationRequirePositiveResponse flag implies a revocation-checking requirement, which makes it easier for man-in-the-middle malicious users to spoof endpoints by leveraging acce...
Apple Iphone Os
Apple Watchos
4.3
CVSSv2
CVE-2016-1785
The Page Loading implementation in WebKit in Apple iOS prior to 9.3 and Safari prior to 9.1 mishandles character encoding during access to cached data, which allows remote malicious users to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.
Apple Iphone Os
Apple Safari
5.8
CVSSv2
CVE-2016-1786
The Page Loading implementation in WebKit in Apple iOS prior to 9.3 and Safari prior to 9.1 mishandles HTTP responses with a 3xx (aka redirection) status code, which allows remote malicious users to spoof the displayed URL, bypass the Same Origin Policy, and obtain sensitive cach...
Apple Iphone Os
Apple Safari
9.3
CVSSv2
CVE-2015-6986
com.apple.driver.AppleVXD393 in the Graphics Driver subsystem in Apple iOS prior to 9.1 allows malicious users to execute arbitrary code via a crafted app that leverages an unspecified "type confusion."
Apple Iphone Os
9.3
CVSSv2
CVE-2015-7072
dyld in Apple iOS prior to 9.2, tvOS prior to 9.1, and watchOS prior to 2.1 mishandles segment validation, which allows malicious users to execute arbitrary code in a privileged context via a crafted app.
Apple Iphone Os
Apple Watchos
Apple Tvos
5
CVSSv2
CVE-2015-6999
The OCSP client in Apple iOS prior to 9.1 does not check for certificate expiry, which allows remote malicious users to spoof a valid certificate by leveraging access to a revoked certificate.
Apple Iphone Os
4.3
CVSSv2
CVE-2016-1784
The History implementation in WebKit in Apple iOS prior to 9.3, Safari prior to 9.1, and tvOS prior to 9.2 allows remote malicious users to cause a denial of service (resource consumption and application crash) via a crafted web site.
Apple Safari
Apple Tvos
Apple Iphone Os
4.3
CVSSv2
CVE-2021-30888
An information leakage issue was addressed. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1, watchOS 8.1. A malicious website using Content Security Policy reports may be able to leak information via redirect behavio...
Apple Iphone Os 15.0
Apple Ipad Os
Apple Iphone Os
Apple Macos
Apple Tvos
Apple Watchos
Apple Ipados 15.0
2.1
CVSSv2
CVE-2015-7000
Notification Center in Apple iOS prior to 9.1 mishandles changes to "Show on Lock Screen" settings, which allows physically proximate malicious users to obtain sensitive information by looking for a (1) Phone or (2) Messages notification on the lock screen soon after a ...
Apple Iphone Os
6.8
CVSSv2
CVE-2015-6981
WebKit, as used in Apple iOS prior to 9.1, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-10-21-1.
Apple Iphone Os
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »