Vulnerabilities > Apple > Iphone OS > 5.0

DATE CVE VULNERABILITY TITLE RISK
2014-12-10 CVE-2014-4472 Resource Management Errors vulnerability in Apple products
WebKit, as used in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-12-2-1.
network
apple CWE-399
6.8
2014-12-10 CVE-2014-4471 Resource Management Errors vulnerability in Apple products
WebKit, as used in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-12-2-1.
network
apple CWE-399
6.8
2014-12-10 CVE-2014-4470 Resource Management Errors vulnerability in Apple products
WebKit, as used in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-12-2-1.
network
apple CWE-399
6.8
2014-12-10 CVE-2014-4469 Resource Management Errors vulnerability in Apple products
WebKit, as used in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-12-2-1.
network
apple CWE-399
6.8
2014-12-10 CVE-2014-4468 Resource Management Errors vulnerability in Apple products
WebKit, as used in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-12-2-1.
network
apple CWE-399
6.8
2014-12-10 CVE-2014-4466 Resource Management Errors vulnerability in Apple products
WebKit, as used in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-12-2-1.
network
low complexity
apple CWE-399
7.5
2014-12-10 CVE-2014-4465 Improper Input Validation vulnerability in Apple Iphone OS, Safari and Tvos
WebKit in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1 allows remote attackers to bypass the Same Origin Policy via crafted Cascading Style Sheets (CSS) token sequences within an SVG file in the SRC attribute of an IMG element.
network
low complexity
apple CWE-20
5.0
2014-11-18 CVE-2014-4463 Permissions, Privileges, and Access Controls vulnerability in Apple Iphone OS
Apple iOS before 8.1.1 allows physically proximate attackers to bypass the lock-screen protection mechanism, and view or transmit a Photo Library photo, via the FaceTime "Leave a Message" feature.
local
low complexity
apple CWE-264
2.1
2014-11-18 CVE-2014-4462 Resource Management Errors vulnerability in Apple Iphone OS and Tvos
WebKit, as used in Apple iOS before 8.1.1 and Apple TV before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-4452.
low complexity
apple CWE-399
5.8
2014-11-18 CVE-2014-4461 Improper Input Validation vulnerability in Apple Iphone OS, mac OS X and Tvos
The kernel in Apple iOS before 8.1.1 and Apple TV before 7.0.2 does not properly validate IOSharedDataQueue object metadata, which allows attackers to execute arbitrary code in a privileged context via a crafted application.
network
apple CWE-20
critical
9.3