Vulnerabilities > Apple > Tvos > Critical

DATE CVE VULNERABILITY TITLE RISK
2014-09-18 CVE-2014-4389 Numeric Errors vulnerability in Apple Iphone OS, mac OS X and Tvos
Integer overflow in IOKit in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted API arguments.
network
apple CWE-189
critical
 9.3
9.3
2014-09-18 CVE-2014-4405 NULL Pointer Dereference Remote Code Execution vulnerability in Apple Iphone OS, mac OS X and Tvos
IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via an application that provides crafted key-mapping properties.
network
apple
critical
 9.3
9.3
2014-09-18 CVE-2014-4418 Improper Input Validation vulnerability in Apple Iphone OS and Tvos
IOKit in Apple iOS before 8 and Apple TV before 7 does not properly validate IODataQueue object metadata, which allows attackers to execute arbitrary code in a privileged context via an application that provides crafted values in unspecified metadata fields, a different vulnerability than CVE-2014-4388.
network
apple CWE-20
critical
 9.3
9.3
2014-07-01 CVE-2014-1356 Buffer Errors vulnerability in Apple Iphone OS, mac OS X and Tvos
Heap-based buffer overflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to execute arbitrary code via a crafted application that sends IPC messages.
network
low complexity
apple CWE-119
critical
 10.0
10
2014-07-01 CVE-2014-1357 Buffer Errors vulnerability in Apple Iphone OS, mac OS X and Tvos
Heap-based buffer overflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to execute arbitrary code via a crafted application that generates log messages.
network
low complexity
apple CWE-119
critical
 10.0
10
2014-07-01 CVE-2014-1358 Numeric Errors vulnerability in Apple Iphone OS, mac OS X and Tvos
Integer overflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to execute arbitrary code via a crafted application.
network
low complexity
apple CWE-189
critical
 10.0
10
2014-07-01 CVE-2014-1359 Numeric Errors vulnerability in Apple Iphone OS and Tvos
Integer underflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to execute arbitrary code via a crafted application.
network
low complexity
apple CWE-189
critical
 10.0
10