Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple tv os vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-4496
The mach_port_kobject interface in the kernel in Apple iOS prior to 8.1.3 and Apple TV prior to 7.0.3 does not properly restrict kernel-address and heap-permutation information, which makes it easier for malicious users to bypass the ASLR protection mechanism via a crafted app.
Apple Iphone Os
Apple Tvos
1 Article
NA
CVE-2014-4480
Directory traversal vulnerability in afc in AppleFileConduit in Apple iOS prior to 8.1.3 and Apple TV prior to 7.0.3 allows malicious users to access unintended filesystem locations by creating a symlink.
Apple Iphone Os
Apple Tvos
NA
CVE-2014-4452
WebKit, as used in Apple iOS prior to 8.1.1 and Apple TV prior to 7.0.2, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-4462.
Apple Tvos
Apple Iphone Os
Apple Safari
Apple Itunes
NA
CVE-2014-4455
dyld in Apple iOS prior to 8.1.1 and Apple TV prior to 7.0.2 does not properly handle overlapping segments in Mach-O executable files, which allows local users to bypass intended code-signing restrictions via a crafted file.
Apple Iphone Os
Apple Tvos 6.0
Apple Tvos 6.0.1
Apple Tvos 6.0.2
Apple Tvos 6.1
Apple Tvos 6.1.1
Apple Tvos 6.1.2
Apple Tvos 6.2
Apple Tvos 6.2.1
Apple Tvos 7.0
Apple Tvos 7.0.1
Apple Tvos
NA
CVE-2014-4461
The kernel in Apple iOS prior to 8.1.1 and Apple TV prior to 7.0.2 does not properly validate IOSharedDataQueue object metadata, which allows malicious users to execute arbitrary code in a privileged context via a crafted application.
Apple Iphone Os 8.0
Apple Iphone Os 8.0.1
Apple Iphone Os 8.0.2
Apple Iphone Os
Apple Mac Os X 10.10.0
Apple Mac Os X
Apple Mac Os X 10.9.5
Apple Mac Os X 10.8.5
Apple Tvos 6.0
Apple Tvos 6.0.1
Apple Tvos 6.0.2
Apple Tvos 6.1
Apple Tvos 6.1.1
Apple Tvos 6.1.2
Apple Tvos 6.2
Apple Tvos 6.2.1
Apple Tvos 7.0
Apple Tvos
NA
CVE-2014-4462
WebKit, as used in Apple iOS prior to 8.1.1 and Apple TV prior to 7.0.2, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-4452.
Apple Iphone Os 8.0
Apple Iphone Os 8.0.1
Apple Iphone Os 8.0.2
Apple Iphone Os
Apple Tvos 6.0
Apple Tvos 6.0.1
Apple Tvos 6.0.2
Apple Tvos 6.1
Apple Tvos 6.1.1
Apple Tvos 6.1.2
Apple Tvos 6.2
Apple Tvos 6.2.1
Apple Tvos 7.0
Apple Tvos
7.8
CVSSv3
CVE-2014-4418
IOKit in Apple iOS prior to 8 and Apple TV prior to 7 does not properly validate IODataQueue object metadata, which allows malicious users to execute arbitrary code in a privileged context via an application that provides crafted values in unspecified metadata fields, a different...
Apple Iphone Os 7.0.4
Apple Iphone Os 7.1.1
Apple Iphone Os
Apple Iphone Os 7.0.5
Apple Iphone Os 7.1
Apple Iphone Os 7.0.6
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0
Apple Iphone Os 7.0.3
Apple Tvos 6.0
Apple Tvos 6.0.1
Apple Tvos 6.0.2
Apple Tvos 6.1
Apple Tvos 6.1.1
Apple Tvos 6.1.2
Apple Tvos
8.1
CVSSv3
CVE-2014-4422
The kernel in Apple iOS prior to 8 and Apple TV prior to 7 uses a predictable random number generator during the early portion of the boot process, which allows malicious users to bypass certain kernel-hardening protection mechanisms by using a user-space process to observe data ...
Apple Tvos 6.0
Apple Tvos 6.0.1
Apple Tvos 6.0.2
Apple Tvos 6.1
Apple Tvos 6.1.1
Apple Tvos 6.1.2
Apple Tvos
Apple Iphone Os 7.0.4
Apple Iphone Os 7.1.1
Apple Iphone Os
Apple Iphone Os 7.0.5
Apple Iphone Os 7.1
Apple Iphone Os 7.0.6
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0
Apple Iphone Os 7.0.3
NA
CVE-2014-4369
The IOAcceleratorFamily API implementation in Apple iOS prior to 8 and Apple TV prior to 7 allows malicious users to cause a denial of service (NULL pointer dereference and device crash) via an application that uses crafted arguments.
Apple Tvos 6.0
Apple Tvos 6.0.1
Apple Tvos 6.0.2
Apple Tvos 6.1
Apple Tvos 6.1.1
Apple Tvos 6.1.2
Apple Tvos
Apple Iphone Os 7.0.4
Apple Iphone Os 7.1.1
Apple Iphone Os
Apple Iphone Os 7.0.5
Apple Iphone Os 7.1
Apple Iphone Os 7.0.6
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0
Apple Iphone Os 7.0.3
NA
CVE-2014-4372
syslogd in the syslog subsystem in Apple iOS prior to 8 and Apple TV prior to 7 allows local users to change the permissions of arbitrary files via a symlink attack on an unspecified file.
Apple Tvos 6.0
Apple Tvos 6.0.1
Apple Tvos 6.0.2
Apple Tvos 6.1
Apple Tvos 6.1.1
Apple Tvos 6.1.2
Apple Tvos
Apple Iphone Os 7.0.4
Apple Iphone Os 7.1.1
Apple Iphone Os
Apple Iphone Os 7.0.5
Apple Iphone Os 7.1
Apple Iphone Os 7.0.6
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0
Apple Iphone Os 7.0.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »