Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2016-4658
xpointer.c in libxml2 prior to 2.9.5 (as used in Apple iOS prior to 10, OS X prior to 10.12, tvOS prior to 10, and watchOS prior to 3, and other products) does not forbid namespace nodes in XPointer ranges, which allows remote malicious users to execute arbitrary code or cause a ...
Apple Iphone Os
Apple Mac Os X
Apple Tvos
Apple Watchos
Xmlsoft Libxml2
1 Github repository
10
CVSSv2
CVE-2016-4629
ImageIO in Apple OS X prior to 10.11.6 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via crafted xStride and yStride values in an EXR image.
Apple Mac Os X
10
CVSSv2
CVE-2015-7029
Apple AirPort Base Station Firmware prior to 7.6.7 and 7.7.x prior to 7.7.7 misparses DNS data, which allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
Apple Airport Base Station Firmware 7.7.3
Apple Airport Base Station Firmware 7.7.0
Apple Airport Base Station Firmware
10
CVSSv2
CVE-2016-1761
libxml2 in Apple iOS prior to 9.3, OS X prior to 10.11.4, and watchOS prior to 2.2 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.
Apple Watchos
Apple Iphone Os
Apple Mac Os X
10
CVSSv2
CVE-2016-1741
The NVIDIA driver in the Graphics Drivers subsystem in Apple OS X prior to 10.11.4 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
Apple Mac Os X
1 EDB exploit
10
CVSSv2
CVE-2015-8659
The idle stream handling in nghttp2 prior to 1.6.0 allows malicious users to have unspecified impact via unknown vectors, aka a heap-use-after-free bug.
Apple Mac Os X
Apple Iphone Os
Apple Tvos
Apple Watchos
Nghttp2 Nghttp2
10
CVSSv2
CVE-2015-7113
The LaunchServices component in Apple iOS prior to 9.2 and watchOS prior to 2.1 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a malformed plist.
Apple Iphone Os
Apple Watchos
10
CVSSv2
CVE-2015-7082
Multiple unspecified vulnerabilities in Git prior to 2.5.4, as used in Apple Xcode prior to 7.2, have unknown impact and attack vectors. NOTE: this CVE is associated only with Xcode use cases.
Git Project Git
10
CVSSv2
CVE-2015-7071
The File Bookmark component in Apple OS X prior to 10.11.2 allows malicious users to bypass a sandbox protection mechanism for app scoped bookmarks via a crafted pathname.
Apple Mac Os X
10
CVSSv2
CVE-2015-6988
The kernel in Apple iOS prior to 9.1 and OS X prior to 10.11.1 does not initialize an unspecified data structure, which allows remote malicious users to execute arbitrary code via vectors involving an unknown network-connectivity requirement.
Apple Iphone Os
Apple Mac Os X
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »