Max CVSS 9.3 Min CVSS 2.1 Total Count9
IDCVSSSummaryLast (major) updatePublished
CVE-2014-4463 2.1
Apple iOS before 8.1.1 allows physically proximate attackers to bypass the lock-screen protection mechanism, and view or transmit a Photo Library photo, via the FaceTime "Leave a Message" feature.
07-12-2016 - 22:06 18-11-2014 - 06:59
CVE-2014-4462 5.8
WebKit, as used in Apple iOS before 8.1.1 and Apple TV before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2
07-12-2016 - 22:06 18-11-2014 - 06:59
CVE-2014-4461 9.3
The kernel in Apple iOS before 8.1.1 and Apple TV before 7.0.2 does not properly validate IOSharedDataQueue object metadata, which allows attackers to execute arbitrary code in a privileged context via a crafted application.
07-12-2016 - 22:06 18-11-2014 - 06:59
CVE-2014-4460 2.1
CFNetwork in Apple iOS before 8.1.1 and OS X before 10.10.1 does not properly clear the browsing cache upon a transition out of private-browsing mode, which makes it easier for physically proximate attackers to obtain sensitive information by reading
07-12-2016 - 22:06 18-11-2014 - 06:59
CVE-2014-4457 7.5
The Sandbox Profiles subsystem in Apple iOS before 8.1.1 does not properly implement the debugserver sandbox, which allows attackers to bypass intended binary-execution restrictions via a crafted application that is run during a time period when debu
07-12-2016 - 22:05 18-11-2014 - 06:59
CVE-2014-4455 2.1
dyld in Apple iOS before 8.1.1 and Apple TV before 7.0.2 does not properly handle overlapping segments in Mach-O executable files, which allows local users to bypass intended code-signing restrictions via a crafted file.
07-12-2016 - 22:05 18-11-2014 - 06:59
CVE-2014-4453 5.0
Apple iOS before 8.1.1 and OS X before 10.10.1 include location data during establishment of a Spotlight Suggestions server connection by Spotlight or Safari, which might allow remote attackers to obtain sensitive information via unspecified vectors.
07-12-2016 - 22:05 18-11-2014 - 06:59
CVE-2014-4452 5.4
WebKit, as used in Apple iOS before 8.1.1 and Apple TV before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2
07-12-2016 - 22:05 18-11-2014 - 06:59
CVE-2014-4451 7.2
Apple iOS before 8.1.1 does not properly enforce the failed-passcode limit, which makes it easier for physically proximate attackers to bypass the lock-screen protection mechanism via a series of guesses.
07-12-2016 - 22:05 18-11-2014 - 06:59
Back to Top Mark selected
Back to Top