Vulnerabilities > Apple > Iphone OS

DATE CVE VULNERABILITY TITLE RISK
2020-10-16 CVE-2020-9889 Out-of-bounds Write vulnerability in Apple products
An out-of-bounds write issue was addressed with improved bounds checking.
local
low complexity
apple CWE-787
7.8
2020-10-16 CVE-2020-9888 Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read was addressed with improved bounds checking.
local
low complexity
apple CWE-125
7.8
2020-10-16 CVE-2020-9885 Insufficient Verification of Data Authenticity vulnerability in Apple products
An issue existed in the handling of iMessage tapbacks.
local
low complexity
apple CWE-345
5.5
2020-10-16 CVE-2020-9884 Out-of-bounds Write vulnerability in Apple products
An out-of-bounds write issue was addressed with improved bounds checking.
local
low complexity
apple CWE-787
7.8
2020-10-16 CVE-2020-9878 Classic Buffer Overflow vulnerability in Apple products
A buffer overflow issue was addressed with improved memory handling.
local
low complexity
apple CWE-120
7.8
2020-10-16 CVE-2020-9870 Improper Input Validation vulnerability in Apple products
A logic issue was addressed with improved validation.
network
low complexity
apple CWE-20
8.8
2020-10-16 CVE-2020-9865 Out-of-bounds Write vulnerability in Apple products
A memory corruption issue was addressed by removing the vulnerable code.
local
low complexity
apple CWE-787
8.6
2020-10-16 CVE-2020-9862 Improper Encoding or Escaping of Output vulnerability in Apple products
A command injection issue existed in Web Inspector.
local
low complexity
apple CWE-116
7.8
2020-07-22 CVE-2020-6514 Information Exposure vulnerability in multiple products
Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to potentially exploit heap corruption via a crafted SCTP stream.
6.5
2020-06-27 CVE-2020-15358 Out-of-bounds Write vulnerability in multiple products
In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation.
local
low complexity
sqlite canonical apple oracle siemens CWE-787
5.5