VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Apple
>
Iphone OS
> 10.3.3
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2017-11-13
CVE-2017-13785
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple
CWE-119
8.8
8.8
2017-11-13
CVE-2017-13784
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple
CWE-119
8.8
8.8
2017-11-13
CVE-2017-13783
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple
CWE-119
8.8
8.8
2017-10-23
CVE-2017-7148
Information Exposure vulnerability in Apple Iphone OS 10.3.3
An issue was discovered in certain Apple products.
local
low complexity
apple
CWE-200
3.3
3.3
2017-09-28
CVE-2017-11121
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, properly crafted malicious over-the-air Fast Transition frames can potentially trigger internal Wi-Fi firmware heap and/or stack overflows, leading to denial of service or other effects, aka B-V2017061205.
network
low complexity
broadcom
apple
CWE-119
critical
9.8
9.8
2017-09-28
CVE-2017-11120
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, an attacker can craft a malformed RRM neighbor report frame to trigger an internal buffer overflow in the Wi-Fi firmware, aka B-V2017061204.
network
low complexity
broadcom
apple
CWE-119
critical
9.8
9.8
2017-07-13
CVE-2017-11103
Insufficient Verification of Data Authenticity vulnerability in multiple products
Heimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification.
network
high complexity
heimdal-project
freebsd
samba
apple
debian
CWE-345
8.1
8.1
2017-05-23
CVE-2016-9843
The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.
network
low complexity
zlib
opensuse
debian
canonical
oracle
redhat
apple
netapp
mariadb
nodejs
critical
9.8
9.8
2017-05-23
CVE-2016-9842
The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.
network
low complexity
zlib
opensuse
debian
canonical
oracle
redhat
apple
nodejs
8.8
8.8
2017-05-23
CVE-2016-9841
inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
network
low complexity
zlib
opensuse
debian
canonical
oracle
redhat
apple
netapp
nodejs
critical
9.8
9.8
«
Previous
1
2
...
199
200
201
202
(current)
203
»
Next