Vulnerabilities > Apple > Tvos > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-12-18 CVE-2019-8540 Improper Initialization vulnerability in Apple products
A memory initialization issue was addressed with improved memory handling.
local
low complexity
apple CWE-665
5.5
2019-12-18 CVE-2019-8530 Unspecified vulnerability in Apple mac OS X
This issue was addressed with improved checks.
local
low complexity
apple
5.5
2019-12-18 CVE-2019-8517 Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read was addressed with improved bounds checking.
network
low complexity
apple CWE-125
6.5
2019-12-18 CVE-2019-8515 Improper Input Validation vulnerability in Apple products
A cross-origin issue existed with the fetch API.
network
low complexity
apple CWE-20
6.5
2019-12-18 CVE-2019-8510 Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read issue existed that led to the disclosure of kernel memory.
local
low complexity
apple CWE-125
5.5
2019-12-18 CVE-2019-7293 Out-of-bounds Write vulnerability in Apple products
A memory corruption issue was addressed with improved memory handling.
local
low complexity
apple CWE-787
5.5
2019-12-18 CVE-2019-7292 Improper Input Validation vulnerability in Apple products
A validation issue was addressed with improved logic.
network
low complexity
apple CWE-20
6.5
2019-12-18 CVE-2019-6207 Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read issue existed that led to the disclosure of kernel memory.
local
low complexity
apple CWE-125
5.5
2019-10-03 CVE-2019-15165 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
sf-pcapng.c in libpcap before 1.9.1 does not properly validate the PHB header length before allocating memory.
5.3
2019-07-01 CVE-2019-13118 Type Confusion vulnerability in multiple products
In numbers.c in libxslt 1.1.33, a type holding grouping characters of an xsl:number instruction was too narrow and an invalid character/length combination could be passed to xsltNumberFormatDecimal, leading to a read of uninitialized stack data.
5.3