Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mail - vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2014-4366
Mail in Apple iOS prior to 8 does not prevent sending a LOGIN command to a LOGINDISABLED IMAP server, which allows remote malicious users to obtain sensitive cleartext information by sniffing the network.
Apple Iphone Os 7.0
Apple Iphone Os 7.0.1
Apple Iphone Os
Apple Iphone Os 7.0.4
Apple Iphone Os 7.0.5
Apple Iphone Os 7.1
Apple Iphone Os 7.1.1
Apple Iphone Os 7.0.6
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0.3
2.1
CVSSv2
CVE-2014-1348
Mail in Apple iOS prior to 7.1.2 advertises the availability of data protection for attachments but stores cleartext attachments under mobile/Library/Mail/, which makes it easier for physically proximate malicious users to obtain sensitive information by mounting the data partiti...
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0
Apple Iphone Os 7.0.5
Apple Iphone Os 7.0.4
Apple Iphone Os 7.0.3
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0.6
Apple Iphone Os
Apple Iphone Os 7.1
5
CVSSv2
CVE-2013-6835
TelephonyUI Framework in Apple iOS 7 prior to 7.1, when Safari is used, does not require user confirmation for FaceTime audio calls, which allows remote malicious users to obtain telephone number or e-mail address information via a facetime-audio: URL.
Apple Iphone Os
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0.3
Apple Iphone Os 7.0
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0.4
Apple Iphone Os 7.0.5
1 EDB exploit
5
CVSSv2
CVE-2013-5182
Mail in Apple Mac OS X prior to 10.9 allows remote malicious users to spoof the existence of a cryptographic signature for an e-mail message by using the multipart/signed content type within an unsigned message.
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.5
Apple Mac Os X 10.8.1
Apple Mac Os X 10.8.2
Apple Mac Os X 10.8.3
Apple Mac Os X 10.8.4
Apple Mac Os X
4.3
CVSSv2
CVE-2013-5181
The auto-configuration feature in Mail in Apple Mac OS X prior to 10.9 selects plaintext authentication for unspecified servers that support CRAM-MD5 authentication, which allows remote malicious users to obtain sensitive information by sniffing the network.
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.2
Apple Mac Os X 10.8.3
Apple Mac Os X 10.8.4
Apple Mac Os X 10.8.5
Apple Mac Os X 10.8.1
Apple Mac Os X
2.6
CVSSv2
CVE-2013-5183
Mail in Apple Mac OS X prior to 10.9, when Kerberos authentication is enabled and TLS is disabled, sends invalid cleartext data, which allows remote malicious users to obtain sensitive information by sniffing the network.
Apple Mac Os X
Apple Mac Os X 10.8.1
Apple Mac Os X 10.8.2
Apple Mac Os X 10.8.3
Apple Mac Os X 10.8.4
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.5
6.4
CVSSv2
CVE-2012-3732
Mail in Apple iOS prior to 6 uses an S/MIME message's From address as the displayed sender address, which allows remote malicious users to spoof signed content via an e-mail message in which the From field does not match the signer's identity.
Apple Iphone Os 1.1.0
Apple Iphone Os 1.1.1
Apple Iphone Os 2.0.1
Apple Iphone Os 2.0.2
Apple Iphone Os 3.1
Apple Iphone Os 1.1.2
Apple Iphone Os 1.1.3
Apple Iphone Os 2.1
Apple Iphone Os 2.1.1
Apple Iphone Os 3.1.3
Apple Iphone Os 3.2
Apple Iphone Os 4.2.5
Apple Iphone Os 4.2.8
Apple Iphone Os 5.0.1
Apple Iphone Os
Apple Iphone Os 1.0.0
Apple Iphone Os 1.0.1
Apple Iphone Os 1.0.2
Apple Iphone Os 2.0
Apple Iphone Os 2.0.0
Apple Iphone Os 3.0
Apple Iphone Os 3.0.1
4.3
CVSSv2
CVE-2012-3730
Mail in Apple iOS prior to 6 does not properly handle reuse of Content-ID header values, which allows remote malicious users to spoof attachments via a header value that was also used in a previous e-mail message, as demonstrated by a message from a different sender.
Apple Iphone Os 1.1.1
Apple Iphone Os 1.1.2
Apple Iphone Os 1.1.3
Apple Iphone Os 2.1.1
Apple Iphone Os 2.2
Apple Iphone Os 3.2.1
Apple Iphone Os 1.0.0
Apple Iphone Os 1.0.1
Apple Iphone Os 2.0
Apple Iphone Os 2.0.1
Apple Iphone Os 3.0.1
Apple Iphone Os 3.1
Apple Iphone Os 4.0.1
Apple Iphone Os 4.0.2
Apple Iphone Os 4.3.3
Apple Iphone Os 4.3.5
Apple Iphone Os 1.0.2
Apple Iphone Os 1.1.0
Apple Iphone Os 2.0.2
Apple Iphone Os 2.1
Apple Iphone Os 3.1.2
Apple Iphone Os 3.1.3
4.3
CVSSv2
CVE-2012-3733
Messages in Apple iOS prior to 6, when multiple iMessage e-mail addresses are configured, does not ensure that a reply's sender address matches the recipient address of the original message, which allows remote malicious users to obtain potentially sensitive information abou...
Apple Iphone Os 1.0.0
Apple Iphone Os 1.0.1
Apple Iphone Os 1.1.5
Apple Iphone Os 2.0
Apple Iphone Os 2.2.1
Apple Iphone Os 3.0
Apple Iphone Os 3.0.1
Apple Iphone Os 4.0
Apple Iphone Os 4.0.1
Apple Iphone Os 4.3.1
Apple Iphone Os 4.3.2
Apple Iphone Os 1.1.3
Apple Iphone Os 1.1.4
Apple Iphone Os 2.1.1
Apple Iphone Os 2.2
Apple Iphone Os 3.2.1
Apple Iphone Os 3.2.2
Apple Iphone Os 4.2.8
Apple Iphone Os 4.3.0
Apple Iphone Os
Apple Iphone Os 1.0.2
Apple Iphone Os 1.1.0
6.8
CVSSv2
CVE-2012-3719
Mail in Apple Mac OS X prior to 10.7.5 does not properly handle embedded web plugins, which allows remote malicious users to execute arbitrary plugin code via an e-mail message that triggers the loading of a third-party plugin.
Apple Mac Os X 10.4.11
Apple Mac Os X 10.6.1
Apple Mac Os X 10.2.0
Apple Mac Os X 10.3.0
Apple Mac Os X 10.4.10
Apple Mac Os X 10.4.1
Apple Mac Os X 10.4.6
Apple Mac Os X 10.4.5
Apple Mac Os X 10.2.6
Apple Mac Os X 10.5.0
Apple Mac Os X 10.6.5
Apple Mac Os X 10.3.1
Apple Mac Os X 10.0.1
Apple Mac Os X 10.0
Apple Mac Os X 10.5.1
Apple Mac Os X 10.5.6
Apple Mac Os X 10.4.0
Apple Mac Os X 10.4.4
Apple Mac Os X 10.7.0
Apple Mac Os X 10.4
Apple Mac Os X 10.2.1
Apple Mac Os X 10.2.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36954
CVE-2024-36933
CVE-2024-24919
CVE-2024-36923
CVE-2024-2961
CVE-2024-36925
bypass
encryption
command injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »