Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple iphone os 7.0.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-4361
The Home & Lock Screen subsystem in Apple iOS prior to 8 does not properly restrict the private API for app prominence, which allows malicious users to determine the frontmost app by leveraging access to a crafted background app.
Apple Iphone Os 7.0.5
Apple Iphone Os 7.0.4
Apple Iphone Os
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0
Apple Iphone Os 7.0.6
Apple Iphone Os 7.1.1
Apple Iphone Os 7.1
Apple Iphone Os 7.0.3
Apple Iphone Os 7.0.2
NA
CVE-2014-4362
The Sandbox Profiles implementation in Apple iOS prior to 8 does not properly restrict the third-party app sandbox profile, which allows malicious users to obtain sensitive Apple ID information via a crafted app.
Apple Iphone Os 7.0.3
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0.6
Apple Iphone Os 7.1.1
Apple Iphone Os 7.1
Apple Iphone Os
Apple Iphone Os 7.0.5
Apple Iphone Os 7.0.4
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0
NA
CVE-2014-4366
Mail in Apple iOS prior to 8 does not prevent sending a LOGIN command to a LOGINDISABLED IMAP server, which allows remote malicious users to obtain sensitive cleartext information by sniffing the network.
Apple Iphone Os 7.0
Apple Iphone Os 7.0.1
Apple Iphone Os
Apple Iphone Os 7.0.4
Apple Iphone Os 7.0.5
Apple Iphone Os 7.1
Apple Iphone Os 7.1.1
Apple Iphone Os 7.0.6
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0.3
NA
CVE-2014-4368
The Accessibility subsystem in Apple iOS prior to 8 allows malicious users to interfere with screen locking via vectors related to AssistiveTouch events.
Apple Iphone Os 7.0.4
Apple Iphone Os 7.0.3
Apple Iphone Os 7.0.6
Apple Iphone Os 7.0.5
Apple Iphone Os 7.1
Apple Iphone Os
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0
Apple Iphone Os 7.1.1
NA
CVE-2014-4384
Directory traversal vulnerability in the App Installation feature in Apple iOS prior to 8 allows local users to install unverified apps by triggering code-signature validation of an unintended bundle.
Apple Iphone Os 7.0.5
Apple Iphone Os 7.0.4
Apple Iphone Os
Apple Iphone Os 7.0.6
Apple Iphone Os 7.1.1
Apple Iphone Os 7.1
Apple Iphone Os 7.0.3
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0
NA
CVE-2014-4386
Race condition in the App Installation feature in Apple iOS prior to 8 allows local users to gain privileges and install unverified apps by leveraging /tmp write access.
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0.4
Apple Iphone Os 7.0.3
Apple Iphone Os 7.0
Apple Iphone Os 7.1.1
Apple Iphone Os 7.0.6
Apple Iphone Os 7.0.5
Apple Iphone Os 7.1
Apple Iphone Os
NA
CVE-2014-4409
WebKit in Apple iOS prior to 8 makes it easier for remote malicious users to track users during private browsing via a crafted web site that reads HTML5 application-cache data that had been stored during normal browsing.
Apple Iphone Os 7.0.6
Apple Iphone Os 7.1.1
Apple Iphone Os 7.1
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0
Apple Iphone Os 7.0.5
Apple Iphone Os 7.0.4
Apple Iphone Os
Apple Iphone Os 7.0.3
Apple Iphone Os 7.0.2
NA
CVE-2014-4423
The Accounts subsystem in Apple iOS prior to 8 allows malicious users to bypass a sandbox protection mechanism and obtain an active iCloud account's Apple ID and metadata via a crafted application.
Apple Iphone Os 7.0.6
Apple Iphone Os 7.0.5
Apple Iphone Os
Apple Iphone Os 7.1.1
Apple Iphone Os 7.1
Apple Iphone Os 7.0.4
Apple Iphone Os 7.0.3
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0
NA
CVE-2014-4374
NSXMLParser in Foundation in Apple iOS prior to 8 allows malicious users to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
Apple Mac Os X
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0
Apple Iphone Os 7.0.6
Apple Iphone Os 7.1.1
Apple Iphone Os 7.1
Apple Iphone Os 7.0.3
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0.5
Apple Iphone Os 7.0.4
Apple Iphone Os
NA
CVE-2014-1271
CoreCapture in Apple iOS prior to 7.1 and Apple TV prior to 6.1 does not properly validate IOKit API calls, which allows malicious users to cause a denial of service (assertion failure and device crash) via a crafted app.
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0.4
Apple Iphone Os 7.0
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0.3
Apple Iphone Os 7.0.5
Apple Iphone Os
Apple Tvos 6.0
Apple Tvos
Apple Tvos 6.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »