Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tvos vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-8698
A validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement. This issue is fixed in iOS 12.4, tvOS 12.4. A malicious application may be able to restrict access to websites.
Apple Iphone Os
Apple Tvos
2.1
CVSSv2
CVE-2019-8704
An authentication issue was addressed with improved state management. This issue is fixed in tvOS 13. A local user may be able to leak sensitive user information.
Apple Iphone Os
Apple Tvos
1 Article
7.1
CVSSv2
CVE-2019-8780
The issue was addressed with improved permissions logic. This issue is fixed in iOS 13.1 and iPadOS 13.1, tvOS 13. A malicious application may be able to determine kernel memory layout.
Apple Iphone Os
Apple Tvos
6.8
CVSSv2
CVE-2021-30802
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.7, tvOS 14.7. Processing maliciously crafted web content may lead to arbitrary code execution.
Apple Iphone Os
Apple Tvos
4.3
CVSSv2
CVE-2018-4381
A resource exhaustion issue was addressed with improved input validation. This issue is fixed in tvOS 12.1, iOS 12.1. Processing a maliciously crafted message may lead to a denial of service.
Apple Iphone Os
Apple Tvos
10
CVSSv2
CVE-2014-4480
Directory traversal vulnerability in afc in AppleFileConduit in Apple iOS prior to 8.1.3 and Apple TV prior to 7.0.3 allows malicious users to access unintended filesystem locations by creating a symlink.
Apple Iphone Os
Apple Tvos
5
CVSSv2
CVE-2014-4496
The mach_port_kobject interface in the kernel in Apple iOS prior to 8.1.3 and Apple TV prior to 7.0.3 does not properly restrict kernel-address and heap-permutation information, which makes it easier for malicious users to bypass the ASLR protection mechanism via a crafted app.
Apple Iphone Os
Apple Tvos
1 Article
5
CVSSv2
CVE-2015-1062
MobileStorageMounter in Apple iOS prior to 8.2 and Apple TV prior to 7.1 does not delete invalid disk-image folders, which allows malicious users to create folders in arbitrary filesystem locations via a crafted app.
Apple Tvos
Apple Iphone Os
1 Article
6.9
CVSSv2
CVE-2015-1086
The Audio Drivers subsystem in Apple iOS prior to 8.3 and Apple TV prior to 7.2 does not properly validate IOKit object metadata, which allows malicious users to execute arbitrary code in a privileged context via a crafted app.
Apple Tvos
Apple Iphone Os
5
CVSSv2
CVE-2015-1092
NSXMLParser in Foundation in Apple iOS prior to 8.3 and Apple TV prior to 7.2 allows remote malicious users to read arbitrary files via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
Apple Tvos
Apple Iphone Os
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675
CVE-2024-3400
CVE-2024-23557
mass assignment
CVE-2023-1389
local file inclusion
CVE-2024-32596
file upload
CVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »