Vulnerabilities > Apple > Iphone OS > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-08-17 | CVE-2015-5748 | Code vulnerability in Apple Iphone OS, mac OS X and Safari The kernel in Apple OS X before 10.10.5 does not properly mount HFS volumes, which allows local users to cause a denial of service via a crafted volume. | 2.1 |
2015-08-16 | CVE-2015-3756 | 7PK - Security Features vulnerability in Apple Iphone OS The Certificate UI in Apple iOS before 8.4.1 does not prevent X.509 certificate acceptance within the lock screen, which allows physically proximate attackers to establish arbitrary certificate trust relationships by completing a dialog. | 2.1 |
2015-08-16 | CVE-2015-3778 | Information Exposure vulnerability in Apple Iphone OS and mac OS X bootp in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to obtain potentially sensitive information about MAC addresses seen in previous Wi-Fi sessions by sniffing an 802.11 network for DNAv4 broadcast traffic. | 3.3 |
2015-05-21 | CVE-2015-4000 | Cryptographic Issues vulnerability in multiple products The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the "Logjam" issue. | 3.7 |
2015-04-10 | CVE-2015-1085 | Permissions, Privileges, and Access Controls vulnerability in Apple Iphone OS AppleKeyStore in Apple iOS before 8.3 does not properly restrict a certain passcode-confirmation interface, which makes it easier for attackers to verify correct passcode guesses via a crafted app. | 1.9 |
2015-04-10 | CVE-2015-1087 | Path Traversal vulnerability in Apple Iphone OS Directory traversal vulnerability in Backup in Apple iOS before 8.3 allows attackers to read arbitrary files via a crafted relative path. | 2.1 |
2015-04-10 | CVE-2015-1094 | Information Exposure vulnerability in Apple Iphone OS and Tvos IOAcceleratorFamily in Apple iOS before 8.3 and Apple TV before 7.2 allows attackers to obtain sensitive information about kernel memory via a crafted app. | 1.9 |
2015-04-10 | CVE-2015-1096 | Information Exposure vulnerability in Apple Iphone OS, mac OS X and Tvos IOHIDFamily in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows attackers to obtain sensitive information about kernel memory via a crafted app. | 1.9 |
2015-04-10 | CVE-2015-1097 | Information Exposure vulnerability in Apple Iphone OS and Tvos IOMobileFramebuffer in Apple iOS before 8.3 and Apple TV before 7.2 allows attackers to obtain sensitive information about kernel memory via a crafted app. | 1.9 |
2015-04-10 | CVE-2015-1106 | Information Exposure vulnerability in Apple Iphone OS The QuickType feature in the Keyboards subsystem in Apple iOS before 8.3 allows physically proximate attackers to discover passcodes by reading the lock screen during use of a Bluetooth keyboard. | 2.1 |