Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple iphone os 8.1.3 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-4495
The kernel in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 does not enforce the read-only attribute of a shared memory segment during use of a custom cache mode, which allows malicious users to bypass intended access restrictions via a crafte...
Apple Tvos
Apple Mac Os X
Apple Iphone Os
NA
CVE-2014-4491
The extension APIs in the kernel in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 do not prevent the presence of addresses within an OSBundleMachOHeaders key in a response, which makes it easier for malicious users to bypass the ASLR protectio...
Apple Tvos
Apple Iphone Os
Apple Mac Os X
NA
CVE-2014-4480
Directory traversal vulnerability in afc in AppleFileConduit in Apple iOS prior to 8.1.3 and Apple TV prior to 7.0.3 allows malicious users to access unintended filesystem locations by creating a symlink.
Apple Iphone Os
Apple Tvos
NA
CVE-2014-4492
libnetcore in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 does not verify that certain values have the expected data type, which allows malicious users to execute arbitrary code in an _networkd context via a crafted XPC message from a sandbo...
Apple Mac Os X
Apple Tvos
Apple Iphone Os
1 EDB exploit
NA
CVE-2014-4496
The mach_port_kobject interface in the kernel in Apple iOS prior to 8.1.3 and Apple TV prior to 7.0.3 does not properly restrict kernel-address and heap-permutation information, which makes it easier for malicious users to bypass the ASLR protection mechanism via a crafted app.
Apple Iphone Os
Apple Tvos
1 Article
NA
CVE-2014-8840
The iTunes Store component in Apple iOS prior to 8.1.3 allows remote malicious users to bypass a Safari sandbox protection mechanism by leveraging redirection of an SSL URL to the iTunes Store.
Apple Iphone Os
NA
CVE-2014-4467
WebKit, as used in Apple iOS prior to 8.1.3, does not properly determine scrollbar boundaries during the rendering of FRAME elements, which allows remote malicious users to spoof the UI via a crafted web site.
Apple Iphone Os
NA
CVE-2014-4493
The app-installation functionality in MobileInstallation in Apple iOS prior to 8.1.3 allows malicious users to obtain control of the local app container by leveraging access to an enterprise distribution certificate for signing a crafted app.
Apple Iphone Os
NA
CVE-2014-4494
Springboard in Apple iOS prior to 8.1.3 does not properly validate signatures when determining whether to solicit an app trust decision from the user, which allows malicious users to bypass intended first-launch restrictions by leveraging access to an enterprise distribution cert...
Apple Iphone Os
NA
CVE-2014-4476
WebKit, as used in Apple iOS prior to 8.1.3; Apple Safari prior to 6.2.3, 7.x prior to 7.1.3, and 8.x prior to 8.0.3; and Apple TV prior to 7.0.3, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a ...
Apple Safari 7.0.2
Apple Safari 7.0.3
Apple Safari 8.0.1
Apple Safari 8.0.2
Apple Safari 7.0
Apple Safari 7.0.1
Apple Safari 7.1.2
Apple Safari 8.0.0
Apple Safari
Apple Safari 7.1.0
Apple Safari 7.1.1
Apple Safari 7.0.4
Apple Safari 7.0.5
Apple Safari 7.0.6
Apple Itunes
Apple Tvos
Apple Iphone Os
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »