Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
iphone os vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2017-11120
On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, an attacker can craft a malformed RRM neighbor report frame to trigger an internal buffer overflow in the Wi-Fi firmware, aka B-V2017061204.
Broadcom Bcm4355c0 Firmware 9.44.78.27.0.1.56
Apple Iphone Os
Apple Tvos
1 EDB exploit
10
CVSSv2
CVE-2017-11121
On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, properly crafted malicious over-the-air Fast Transition frames can potentially trigger internal Wi-Fi firmware heap and/or stack overflows, leading to denial of service or other effects, aka B-V2017061205.
Broadcom Bcm4355c0 Firmware 9.44.78.27.0.1.56
Apple Tvos
Apple Iphone Os
10
CVSSv2
CVE-2017-8248
A buffer overflow may occur in the processing of a downlink NAS message in Qualcomm Telephony as used in Apple iPhone 5 and later, iPad 4th generation and later, iPod touch 6th generation.
Apple Iphone Os
10
CVSSv2
CVE-2017-2434
An issue exists in certain Apple products. iOS prior to 10.3 is affected. The issue involves the "HomeKit" component. It allows malicious users to have an unspecified impact by leveraging the presence of Home Control on Control Center.
Apple Iphone Os
10
CVSSv2
CVE-2016-4658
xpointer.c in libxml2 prior to 2.9.5 (as used in Apple iOS prior to 10, OS X prior to 10.12, tvOS prior to 10, and watchOS prior to 3, and other products) does not forbid namespace nodes in XPointer ranges, which allows remote malicious users to execute arbitrary code or cause a ...
Apple Iphone Os
Apple Mac Os X
Apple Tvos
Apple Watchos
Xmlsoft Libxml2
1 Github repository
10
CVSSv2
CVE-2016-4702
Audio in Apple iOS prior to 10, OS X prior to 10.12, tvOS prior to 10, and watchOS prior to 3 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
Apple Mac Os X
Apple Tvos
Apple Watchos
Apple Iphone Os
10
CVSSv2
CVE-2016-1761
libxml2 in Apple iOS prior to 9.3, OS X prior to 10.11.4, and watchOS prior to 2.2 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.
Apple Watchos
Apple Iphone Os
Apple Mac Os X
10
CVSSv2
CVE-2015-8659
The idle stream handling in nghttp2 prior to 1.6.0 allows malicious users to have unspecified impact via unknown vectors, aka a heap-use-after-free bug.
Apple Mac Os X
Apple Iphone Os
Apple Tvos
Apple Watchos
Nghttp2 Nghttp2
10
CVSSv2
CVE-2015-7113
The LaunchServices component in Apple iOS prior to 9.2 and watchOS prior to 2.1 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a malformed plist.
Apple Iphone Os
Apple Watchos
10
CVSSv2
CVE-2015-6988
The kernel in Apple iOS prior to 9.1 and OS X prior to 10.11.1 does not initialize an unspecified data structure, which allows remote malicious users to execute arbitrary code via vectors involving an unknown network-connectivity requirement.
Apple Iphone Os
Apple Mac Os X
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »