Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple iphone os 7.0.3 vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2014-4486
IOAcceleratorFamily in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 does not properly handle resource lists and IOService userclient types, which allows malicious users to execute arbitrary code or cause a denial of service (NULL pointer dere...
Apple Mac Os X
Apple Iphone Os
Apple Tvos
890
VMScore
CVE-2014-4487
Buffer overflow in IOHIDFamily in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 allows malicious users to execute arbitrary code in a privileged context via a crafted app.
Apple Mac Os X
Apple Tvos
Apple Iphone Os
890
VMScore
CVE-2014-4488
IOHIDFamily in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 does not properly validate resource-queue metadata, which allows malicious users to execute arbitrary code in a privileged context via a crafted app.
Apple Iphone Os
Apple Tvos
Apple Mac Os X
890
VMScore
CVE-2014-4489
IOHIDFamily in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 does not properly initialize event queues, which allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via ...
Apple Iphone Os
Apple Tvos
Apple Mac Os X
445
VMScore
CVE-2014-4491
The extension APIs in the kernel in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 do not prevent the presence of addresses within an OSBundleMachOHeaders key in a response, which makes it easier for malicious users to bypass the ASLR protectio...
Apple Tvos
Apple Iphone Os
Apple Mac Os X
755
VMScore
CVE-2014-4492
libnetcore in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 does not verify that certain values have the expected data type, which allows malicious users to execute arbitrary code in an _networkd context via a crafted XPC message from a sandbo...
Apple Mac Os X
Apple Tvos
Apple Iphone Os
1 EDB exploit
890
VMScore
CVE-2014-4495
The kernel in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 does not enforce the read-only attribute of a shared memory segment during use of a custom cache mode, which allows malicious users to bypass intended access restrictions via a crafte...
Apple Tvos
Apple Mac Os X
Apple Iphone Os
445
VMScore
CVE-2014-4496
The mach_port_kobject interface in the kernel in Apple iOS prior to 8.1.3 and Apple TV prior to 7.0.3 does not properly restrict kernel-address and heap-permutation information, which makes it easier for malicious users to bypass the ASLR protection mechanism via a crafted app.
Apple Iphone Os
Apple Tvos
1 Article
668
VMScore
CVE-2014-4466
WebKit, as used in Apple Safari prior to 6.2.1, 7.x prior to 7.1.1, and 8.x prior to 8.0.1, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other ...
Apple Iphone Os
Apple Tvos
Apple Safari 7.0.5
Apple Safari 7.0.4
Apple Safari 7.0.1
Apple Safari 7.0
Apple Safari
Apple Safari 7.0.6
Apple Safari 7.1.0
Apple Safari 8.0.0
Apple Safari 7.0.3
Apple Safari 7.0.2
Apple Itunes
605
VMScore
CVE-2014-4468
WebKit, as used in Apple Safari prior to 6.2.1, 7.x prior to 7.1.1, and 8.x prior to 8.0.1, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other ...
Apple Iphone Os
Apple Tvos
Apple Itunes
Apple Safari
Apple Safari 7.0.6
Apple Safari 7.1.0
Apple Safari 8.0.0
Apple Safari 7.0.3
Apple Safari 7.0.2
Apple Safari 7.0.1
Apple Safari 7.0
Apple Safari 7.0.5
Apple Safari 7.0.4
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »