Vulnerabilities > Apple > Iwork > Medium

DATE CVE VULNERABILITY TITLE RISK
2015-10-18 CVE-2015-7034 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iwork and Pages
The Apple iWork application before 2.6 for iOS and Apple Pages before 5.6 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Pages document.
network
apple CWE-119
6.8
2015-10-18 CVE-2015-7033 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
The Apple iWork application before 2.6 for iOS, Apple Keynote before 6.6, Apple Pages before 5.6, and Apple Numbers before 3.6 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted document.
network
apple CWE-119
6.8
2015-10-18 CVE-2015-7032 Information Exposure vulnerability in Apple products
The Apple iWork application before 2.6 for iOS, Apple Keynote before 6.6, Apple Pages before 5.6, and Apple Numbers before 3.6 allow remote attackers to obtain sensitive information via a crafted document.
network
apple CWE-200
4.3
2015-08-16 CVE-2015-3784 Information Exposure vulnerability in Apple products
Office Viewer in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
network
low complexity
apple CWE-200
5.0