Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple tv vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-4488
IOHIDFamily in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 does not properly validate resource-queue metadata, which allows malicious users to execute arbitrary code in a privileged context via a crafted app.
Apple Iphone Os
Apple Tvos
Apple Mac Os X
NA
CVE-2014-4489
IOHIDFamily in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 does not properly initialize event queues, which allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via ...
Apple Iphone Os
Apple Tvos
Apple Mac Os X
NA
CVE-2014-4491
The extension APIs in the kernel in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 do not prevent the presence of addresses within an OSBundleMachOHeaders key in a response, which makes it easier for malicious users to bypass the ASLR protectio...
Apple Tvos
Apple Iphone Os
Apple Mac Os X
NA
CVE-2014-4492
libnetcore in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 does not verify that certain values have the expected data type, which allows malicious users to execute arbitrary code in an _networkd context via a crafted XPC message from a sandbo...
Apple Mac Os X
Apple Tvos
Apple Iphone Os
1 EDB exploit
NA
CVE-2014-4495
The kernel in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 does not enforce the read-only attribute of a shared memory segment during use of a custom cache mode, which allows malicious users to bypass intended access restrictions via a crafte...
Apple Tvos
Apple Mac Os X
Apple Iphone Os
NA
CVE-2014-4496
The mach_port_kobject interface in the kernel in Apple iOS prior to 8.1.3 and Apple TV prior to 7.0.3 does not properly restrict kernel-address and heap-permutation information, which makes it easier for malicious users to bypass the ASLR protection mechanism via a crafted app.
Apple Iphone Os
Apple Tvos
1 Article
NA
CVE-2014-4462
WebKit, as used in Apple iOS prior to 8.1.1 and Apple TV prior to 7.0.2, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-4452.
Apple Iphone Os
Apple Iphone Os 8.0.2
Apple Iphone Os 8.0.1
Apple Iphone Os 8.0
Apple Tvos 6.2
Apple Tvos 6.1.2
Apple Tvos 7.0
Apple Tvos 6.2.1
Apple Tvos
Apple Tvos 6.0.2
Apple Tvos 6.0.1
Apple Tvos 6.0
Apple Tvos 6.1.1
Apple Tvos 6.1
NA
CVE-2014-4461
The kernel in Apple iOS prior to 8.1.1 and Apple TV prior to 7.0.2 does not properly validate IOSharedDataQueue object metadata, which allows malicious users to execute arbitrary code in a privileged context via a crafted application.
Apple Iphone Os 8.0.1
Apple Iphone Os 8.0
Apple Iphone Os
Apple Iphone Os 8.0.2
Apple Mac Os X 10.10.0
Apple Mac Os X 10.9.5
Apple Mac Os X 10.8.5
Apple Mac Os X
Apple Tvos 7.0
Apple Tvos 6.2.1
Apple Tvos 6.0
Apple Tvos 6.1.1
Apple Tvos 6.1
Apple Tvos
Apple Tvos 6.0.2
Apple Tvos 6.0.1
Apple Tvos 6.2
Apple Tvos 6.1.2
NA
CVE-2014-4452
WebKit, as used in Apple iOS prior to 8.1.1 and Apple TV prior to 7.0.2, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-4462.
Apple Tvos
Apple Iphone Os
Apple Safari
Apple Itunes
NA
CVE-2014-4455
dyld in Apple iOS prior to 8.1.1 and Apple TV prior to 7.0.2 does not properly handle overlapping segments in Mach-O executable files, which allows local users to bypass intended code-signing restrictions via a crafted file.
Apple Iphone Os
Apple Tvos 6.1
Apple Tvos 6.0.2
Apple Tvos 7.0
Apple Tvos 6.2.1
Apple Tvos
Apple Tvos 7.0.1
Apple Tvos 6.0.1
Apple Tvos 6.0
Apple Tvos 6.2
Apple Tvos 6.1.2
Apple Tvos 6.1.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »