Vulnerabilities > Apple
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-09-22 | CVE-2015-5568 | Improper Input Validation vulnerability in multiple products Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 allow attackers to cause a denial of service (vector-length corruption) or possibly have unspecified other impact via unknown vectors. | 10.0 |
| 2015-09-22 | CVE-2015-5567 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 allow attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5579. | 10.0 |
| 2015-09-18 | CVE-2015-5921 | Information Exposure vulnerability in Apple Iphone OS WebKit in Apple iOS before 9 mishandles "Content-Disposition: attachment" HTTP headers, which might allow man-in-the-middle attackers to obtain sensitive information via unspecified vectors. | 4.3 |
| 2015-09-18 | CVE-2015-5920 | Information Disclosure vulnerability in Apple iTunes The Software Update component in Apple iTunes before 12.3 does not properly handle redirection, which allows man-in-the-middle attackers to discover encrypted SMB credentials via unspecified vectors. network apple | 4.3 |
| 2015-09-18 | CVE-2015-5916 | Information Exposure vulnerability in Apple Iphone OS and Watchos The Apple Pay component in Apple iOS before 9 allows remote terminals to obtain sensitive recent-transaction information during payments by leveraging the transaction-log feature. | 4.3 |
| 2015-09-18 | CVE-2015-5912 | Code vulnerability in Apple Iphone OS and mac OS X The CFNetwork FTPProtocol component in Apple iOS before 9 allows remote FTP proxy servers to trigger TCP connection attempts to intranet hosts via crafted responses. | 5.0 |
| 2015-09-18 | CVE-2015-5911 | Security Bypass vulnerability in Apple mac OS X Server 5.0.2 Multiple unspecified vulnerabilities in Twisted in Wiki Server in Apple OS X Server before 5.0.3 allow attackers to have an unknown impact via an XML document. | 10.0 |
| 2015-09-18 | CVE-2015-5910 | Information Exposure vulnerability in Apple Xcode IDE Xcode Server in Apple Xcode before 7.0 does not ensure that server traffic is encrypted, which allows remote attackers to obtain sensitive information by sniffing the network. | 3.3 |
| 2015-09-18 | CVE-2015-5909 | Information Exposure vulnerability in Apple Xcode IDE Xcode Server in Apple Xcode before 7.0 does not properly restrict access to repository e-mail lists, which allows remote attackers to obtain potentially sensitive build information in opportunistic circumstances by leveraging incorrect notification delivery. | 5.0 |
| 2015-09-18 | CVE-2015-5907 | Cryptographic Issues vulnerability in Apple Iphone OS WebKit in Apple iOS before 9 allows man-in-the-middle attackers to conduct redirection attacks by leveraging the mishandling of the resource cache of an SSL web site with an invalid X.509 certificate. | 2.6 |