Vulnerabilities > Apple > Tvos > 6.1.2

DATE CVE VULNERABILITY TITLE RISK
2014-09-18 CVE-2014-4421 Security vulnerability in Apple Iphone OS, mac OS X and Tvos
The network-statistics interface in the kernel in Apple iOS before 8 and Apple TV before 7 does not properly initialize memory, which allows attackers to obtain sensitive memory-content and memory-layout information via a crafted application, a different vulnerability than CVE-2014-4371, CVE-2014-4419, and CVE-2014-4420.
local
apple
1.9
1.9
2014-09-18 CVE-2014-4420 Security vulnerability in Apple Iphone OS, mac OS X and Tvos
The network-statistics interface in the kernel in Apple iOS before 8 and Apple TV before 7 does not properly initialize memory, which allows attackers to obtain sensitive memory-content and memory-layout information via a crafted application, a different vulnerability than CVE-2014-4371, CVE-2014-4419, and CVE-2014-4421.
local
apple
1.9
1.9
2014-09-18 CVE-2014-4419 Security vulnerability in Apple Iphone OS, mac OS X and Tvos
The network-statistics interface in the kernel in Apple iOS before 8 and Apple TV before 7 does not properly initialize memory, which allows attackers to obtain sensitive memory-content and memory-layout information via a crafted application, a different vulnerability than CVE-2014-4371, CVE-2014-4420, and CVE-2014-4421.
local
apple
1.9
1.9
2014-09-18 CVE-2014-4418 Improper Input Validation vulnerability in Apple Iphone OS and Tvos
IOKit in Apple iOS before 8 and Apple TV before 7 does not properly validate IODataQueue object metadata, which allows attackers to execute arbitrary code in a privileged context via an application that provides crafted values in unspecified metadata fields, a different vulnerability than CVE-2014-4388.
network
apple CWE-20
critical
 9.3
9.3
2014-09-18 CVE-2014-4415 Buffer Errors vulnerability in Apple Iphone OS, Safari and Tvos
WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-09-17-1 and APPLE-SA-2014-09-17-2.
network
apple CWE-119
6.8
6.8
2014-09-18 CVE-2014-4414 Buffer Errors vulnerability in Apple Iphone OS, mac OS X and Tvos
WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-09-17-1 and APPLE-SA-2014-09-17-2.
network
apple CWE-119
6.8
6.8
2014-09-18 CVE-2014-4413 Buffer Errors vulnerability in Apple Iphone OS, mac OS X and Tvos
WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-09-17-1 and APPLE-SA-2014-09-17-2.
network
apple CWE-119
6.8
6.8
2014-09-18 CVE-2014-4412 Buffer Errors vulnerability in Apple Iphone OS, mac OS X and Tvos
WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-09-17-1 and APPLE-SA-2014-09-17-2.
network
apple CWE-119
6.8
6.8
2014-09-18 CVE-2014-4411 Buffer Errors vulnerability in Apple Iphone OS, mac OS X and Tvos
WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-09-17-1 and APPLE-SA-2014-09-17-2.
network
apple CWE-119
6.8
6.8
2014-09-18 CVE-2014-4410 Buffer Errors vulnerability in Apple Iphone OS, mac OS X and Tvos
WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-09-17-1 and APPLE-SA-2014-09-17-2.
network
apple CWE-119
6.8
6.8