Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple cfnetwork vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2017-7172
An issue exists in certain Apple products. iOS prior to 11.2 is affected. macOS prior to 10.13.2 is affected. iCloud prior to 7.2 on Windows is affected. iTunes prior to 12.7.2 on Windows is affected. tvOS prior to 11.2 is affected. watchOS prior to 4.2 is affected. The issue inv...
Apple Iphone Os
Apple Mac Os X
Apple Watchos
Apple Tvos
Apple Icloud
Apple Itunes
9.3
CVSSv2
CVE-2017-13833
An issue exists in certain Apple products. macOS prior to 10.13.1 is affected. The issue involves the "CFNetwork" component. It allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
Apple Mac Os X
1 Github repository
9.3
CVSSv2
CVE-2017-13829
An issue exists in certain Apple products. macOS prior to 10.13.1 is affected. The issue involves the "CFNetwork" component. It allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
Apple Mac Os X
9.3
CVSSv2
CVE-2010-1383
CFNetwork in Apple Safari prior to 5.0.6 on Windows allows remote web servers to execute arbitrary code by replaying the NTLM credentials of a client user, related to a "credential reflection" issue.
Apple Cfnetwork
Apple Safari
Apple Safari 1.0
Apple Safari 1.0.0
Apple Safari 1.0.0b1
Apple Safari 1.0.0b2
Apple Safari 1.0.1
Apple Safari 1.0.2
Apple Safari 1.0.3
Apple Safari 1.1
Apple Safari 1.1.0
Apple Safari 1.1.1
Apple Safari 1.2
Apple Safari 1.2.0
Apple Safari 1.2.1
Apple Safari 1.2.2
Apple Safari 1.2.3
Apple Safari 1.2.4
Apple Safari 1.2.5
Apple Safari 1.3
Apple Safari 1.3.0
Apple Safari 1.3.1
9.3
CVSSv2
CVE-2009-1704
CFNetwork in Apple Safari prior to 4.0 misinterprets downloaded image files as local HTML documents in unspecified circumstances, which allows remote malicious users to execute arbitrary JavaScript code by placing it in an image file.
Apple Safari 1.1
Apple Safari 1.3.1
Apple Safari 3.2.3
Apple Safari 2.0.2
Apple Safari 3.1
Apple Safari 3.1.2
Apple Safari 3.0
Apple Safari 0.8
Apple Safari 2.0
Apple Safari 3.0.4
Apple Safari 0.9
Apple Safari 3.0.3
Apple Safari 1.3.2
Apple Safari 1.2
Apple Safari
Apple Safari 3.2.1
Apple Safari 3.0.2
Apple Safari 2.0.4
Apple Safari 3.1.1
Apple Safari 1.0.3
Apple Safari 1.0
Apple Safari 1.3
8.8
CVSSv2
CVE-2007-4709
Directory traversal vulnerability in CFNetwork in Apple Mac OS X 10.5.1 allows remote malicious users to overwrite arbitrary files via a crafted HTTP response.
Apple Mac Os X 10.5.1
7.5
CVSSv2
CVE-2006-1441
Integer overflow in CFNetwork in Apple Mac OS X 10.4.6 allows remote malicious users to execute arbitrary code via crafted chunked transfer encoding.
Apple Mac Os X 10.4.6
6.8
CVSSv2
CVE-2015-3684
The HTTPAuthentication implementation in CFNetwork in Apple iOS prior to 8.4 and OS X prior to 10.10.4 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via crafted credentials in a URL.
Apple Mac Os X
Apple Iphone Os
6.8
CVSSv2
CVE-2010-1752
Stack-based buffer overflow in CFNetwork in Apple iOS prior to 4 on the iPhone and iPod touch allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via vectors related to URL handling.
Apple Iphone Os
6.8
CVSSv2
CVE-2009-0157
Heap-based buffer overflow in CFNetwork in Apple Mac OS X 10.5 prior to 10.5.7 allows remote web servers to execute arbitrary code or cause a denial of service (application crash) via long HTTP headers.
Apple Mac Os X Server 10.5.2
Apple Mac Os X 10.5.6
Apple Mac Os X 10.5.5
Apple Mac Os X Server 10.5.5
Apple Mac Os X 10.5.1
Apple Mac Os X Server 10.5.1
Apple Mac Os X Server 10.5.6
Apple Mac Os X 10.5.3
Apple Mac Os X 10.5.0
Apple Mac Os X Server 10.5.0
Apple Mac Os X Server 10.5.3
Apple Mac Os X Server 10.5.4
Apple Mac Os X 10.5.2
Apple Mac Os X 10.5.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38627
CVE-2022-45803
CVE-2024-38319
camera
template injection
CVE-2024-27801
CVE-2024-0762
CVE-2024-5791
unauthorized
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »