Vulnerabilities > Apple > Iphone OS > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-05 | CVE-2019-6231 | Out-of-bounds Read vulnerability in Apple products An out-of-bounds read was addressed with improved bounds checking. | 5.5 |
| 2019-03-05 | CVE-2019-6229 | Cross-site Scripting vulnerability in Apple products A logic issue was addressed with improved validation. | 6.1 |
| 2019-03-05 | CVE-2019-6228 | Cross-site Scripting vulnerability in Apple Iphone OS A cross-site scripting issue existed in Safari. | 6.1 |
| 2019-03-05 | CVE-2019-6209 | Out-of-bounds Read vulnerability in Apple products An out-of-bounds read issue existed that led to the disclosure of kernel memory. | 5.5 |
| 2019-03-05 | CVE-2019-6208 | Improper Initialization vulnerability in Apple Iphone OS A memory initialization issue was addressed with improved memory handling. | 5.5 |
| 2019-02-18 | CVE-2019-8906 | Out-of-bounds Read vulnerability in multiple products do_core_note in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused. | 4.4 |
| 2019-01-11 | CVE-2018-4278 | In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 11.4.1, iCloud for Windows before 7.6, sound fetched through audio elements may be exfiltrated cross-origin. | 4.3 |
| 2019-01-11 | CVE-2017-2411 | 7PK - Security Features vulnerability in Apple Iphone OS In iOS before 11.2, exchange rates were retrieved from HTTP rather than HTTPS. | 5.9 |
| 2019-01-11 | CVE-2017-13891 | Improper Input Validation vulnerability in Apple Iphone OS In iOS before 11.2, an inconsistent user interface issue was addressed through improved state management. | 6.5 |
| 2019-01-11 | CVE-2016-4644 | Information Exposure vulnerability in Apple Iphone OS In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a downgrade issue existed with HTTP authentication credentials saved in Keychain. | 6.5 |