Vulnerabilities > Apple > Iphone OS > 5.0

DATE CVE VULNERABILITY TITLE RISK
2017-10-23 CVE-2017-7086 Resource Exhaustion vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-400
7.5
2017-10-23 CVE-2017-7085 Improper Input Validation vulnerability in Apple Iphone OS
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-20
6.5
2017-10-23 CVE-2017-7083 Improper Input Validation vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-20
4.9
2017-10-23 CVE-2017-7081 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-119
8.8
2017-10-23 CVE-2017-7080 Improper Certificate Validation vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-295
7.5
2017-10-23 CVE-2017-7078 Cleartext Transmission of Sensitive Information vulnerability in Apple Iphone OS
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-319
5.3
2017-10-23 CVE-2017-7072 Improper Input Validation vulnerability in Apple Iphone OS
An issue was discovered in certain Apple products.
local
low complexity
apple CWE-20
5.5
2017-10-04 CVE-2017-11122 Information Exposure vulnerability in multiple products
On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56, an attacker can trigger an information leak due to insufficient length validation, related to ICMPv6 router advertisement offloading.
network
low complexity
broadcom apple CWE-200
7.5
2017-09-28 CVE-2017-11121 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, properly crafted malicious over-the-air Fast Transition frames can potentially trigger internal Wi-Fi firmware heap and/or stack overflows, leading to denial of service or other effects, aka B-V2017061205.
network
low complexity
broadcom apple CWE-119
critical
9.8
2017-09-28 CVE-2017-11120 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, an attacker can craft a malformed RRM neighbor report frame to trigger an internal buffer overflow in the Wi-Fi firmware, aka B-V2017061204.
network
low complexity
broadcom apple CWE-119
critical
9.8