Icloud Security Vulnerabilities and Issues — Page 9 of Icloud CVE List

Lucene search

AppleIcloud

449 matches found

CVE•added 2017/02/20 8:59 a.m.•67 views

CVE-2016-7639

An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of ser...

8.8CVSS8.1AI score0.00774EPSS

CVE•added 2017/02/20 8:59 a.m.•67 views

CVE-2016-7641

8.8CVSS8.1AI score0.00774EPSS

CVE•added 2017/07/20 4:29 p.m.•67 views

CVE-2017-7024

An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. watchOS before 3.2.3 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or c...

9.3CVSS8.1AI score0.00472EPSS

CVE•added 2018/04/03 6:29 a.m.•67 views

CVE-2018-4096

An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10.13.3 is affected. Safari before 11.0.3 is affected. iCloud before 7.3 on Windows is affected. iTunes before 12.7.3 on Windows is affected. tvOS before 11.2.5 is affected. watchOS before 4.2.2 is affect...

8.8CVSS7.6AI score0.00673EPSS

CVE•added 2020/10/27 8:15 p.m.•67 views

CVE-2019-8638

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in watchOS 5.2, iCloud for Windows 7.11, iOS 12.2, iTunes 12.9.4 for Windows, Safari 12.1. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS9.1AI score0.00758EPSS

CVE•added 2017/11/13 3:29 a.m.•66 views

CVE-2017-13791

An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attacker...

8.8CVSS7.7AI score0.14267EPSS

CVE•added 2017/11/13 3:29 a.m.•66 views

CVE-2017-13802

8.8CVSS7.7AI score0.14267EPSS

CVE•added 2017/10/23 1:29 a.m.•66 views

CVE-2017-7106

An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. The issue involves the "WebKit" component. It allows remote attackers to spoof the address bar.

6.5CVSS6.2AI score0.00693EPSS

CVE•added 2019/04/03 6:29 p.m.•66 views

CVE-2018-4409

A resource exhaustion issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1, tvOS 12.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

6.5CVSS6.6AI score0.00439EPSS

CVE•added 2019/12/18 6:15 p.m.•66 views

CVE-2019-8556

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.7AI score0.00758EPSS

CVE•added 2020/10/27 8:15 p.m.•66 views

CVE-2019-8639

8.8CVSS9.1AI score0.00758EPSS

CVE•added 2017/02/20 8:59 a.m.•65 views

CVE-2016-7592

An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component, which allows remote attackers to obtain sensitive information via crafted Jav...

4.3CVSS4.9AI score0.00618EPSS

CVE•added 2017/02/20 8:59 a.m.•65 views

CVE-2016-7654

8.8CVSS8.1AI score0.00728EPSS

CVE•added 2017/11/13 3:29 a.m.•65 views

CVE-2017-13797

8.8CVSS8.7AI score0.09068EPSS

CVE•added 2017/04/02 1:59 a.m.•65 views

CVE-2017-2383

An issue was discovered in certain Apple products. iCloud before 6.2 on Windows is affected. iTunes before 12.6 on Windows is affected. The issue involves cleartext client-certificate transmission in the "APNs Server" component. It allows man-in-the-middle attackers to track users via correlation w...

3.5CVSS4.8AI score0.00145EPSS

CVE•added 2017/04/02 1:59 a.m.•65 views

CVE-2017-2463

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. iCloud before 6.2 on Windows is affected. iTunes before 12.6 on Windows is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to...

8.8CVSS8.6AI score0.00723EPSS

CVE•added 2020/10/27 8:15 p.m.•65 views

CVE-2019-8582

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iCloud for Windows 7.12, tvOS 12.3, iTunes 12.9.5 for Windows, macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, iOS 12.3. Processing a maliciously crafted font may r...

5.5CVSS5.8AI score0.00296EPSS

CVE•added 2017/02/20 8:59 a.m.•64 views

CVE-2016-4692

8.8CVSS8AI score0.00728EPSS

CVE•added 2017/02/20 8:59 a.m.•64 views

CVE-2016-7635

8.8CVSS8.1AI score0.00728EPSS

CVE•added 2017/11/13 3:29 a.m.•64 views

CVE-2017-13785

8.8CVSS7.7AI score0.14267EPSS

CVE•added 2017/11/13 3:29 a.m.•64 views

CVE-2017-13796

8.8CVSS7.7AI score0.14267EPSS

CVE•added 2016/07/22 2:59 a.m.•63 views

CVE-2016-4608

libxslt in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes before 12.4.2 on Windows, iCloud before 5.2.1 on Windows, tvOS before 9.2.2, and watchOS before 2.2.2 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors...

9.8CVSS9.2AI score

CVE•added 2017/02/20 8:59 a.m.•63 views

CVE-2016-7652

8.8CVSS8.1AI score0.00728EPSS

CVE•added 2017/10/23 1:29 a.m.•63 views

CVE-2017-7127

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. iCloud before 7.0 on Windows is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "SQLite" component. It allows attackers to execute arbitrary code ...

9.3CVSS8.1AI score0.00172EPSS

CVE•added 2019/04/03 6:29 p.m.•63 views

CVE-2018-4360

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.8CVSS8.1AI score0.00704EPSS

CVE•added 2016/07/22 2:59 a.m.•61 views

CVE-2016-4607

9.8CVSS9.2AI score

CVE•added 2017/02/20 8:59 a.m.•60 views

CVE-2016-7598

6.5CVSS5.9AI score0.00569EPSS

CVE•added 2017/02/20 8:59 a.m.•59 views

CVE-2016-4743

7.1CVSS6.8AI score0.00356EPSS

CVE•added 2017/02/20 8:59 a.m.•59 views

CVE-2016-7578

An issue was discovered in certain Apple products. iOS before 10.1 is affected. Safari before 10.0.1 is affected. iCloud before 6.0.1 is affected. iTunes before 12.5.2 is affected. tvOS before 10.0.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbit...

8.8CVSS8.6AI score0.01005EPSS

CVE•added 2017/05/22 5:29 a.m.•59 views

CVE-2017-2530

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. iCloud before 6.2.1 on Windows is affected. tvOS before 10.2.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a ...

8.8CVSS8AI score0.00658EPSS

CVE•added 2019/04/03 6:29 p.m.•59 views

CVE-2018-4269

A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.

8.6CVSS6.3AI score0.00305EPSS

CVE•added 2019/04/03 6:29 p.m.•59 views

CVE-2018-4271

Multiple memory corruption issues were addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.

6.5CVSS7.4AI score0.00333EPSS

CVE•added 2016/07/22 2:59 a.m.•56 views

CVE-2016-4616

libxml2 in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes before 12.4.2 on Windows, iCloud before 5.2.1 on Windows, tvOS before 9.2.2, and watchOS before 2.2.2 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors...

9.8CVSS9.1AI score

CVE•added 2017/12/25 9:29 p.m.•54 views

CVE-2017-13864

An issue was discovered in certain Apple products. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. The issue involves the "APNs Server" component. It allows man-in-the-middle attackers to track users by leveraging mishandling of client certificates.

5.9CVSS5.9AI score0.00399EPSS

CVE•added 2019/04/03 6:29 p.m.•54 views

CVE-2018-4440

A logic issue was addressed with improved state management. This issue affected versions prior to iOS 12.1.1, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.

4.3CVSS5.3AI score0.00344EPSS

CVE•added 2017/02/20 8:59 a.m.•52 views

CVE-2016-7646

8.8CVSS8AI score0.00728EPSS

CVE•added 2020/10/27 8:15 p.m.•52 views

CVE-2018-4474

A memory consumption issue was addressed with improved memory handling. This issue is fixed in iCloud for Windows 7.7, watchOS 5, Safari 12, iOS 12, iTunes 12.9 for Windows, tvOS 12. Unexpected interaction causes an ASSERT failure.

7.5CVSS7.1AI score0.00862EPSS

CVE•added 2016/07/22 2:59 a.m.•50 views

CVE-2016-4614

9.8CVSS9.1AI score

CVE•added 2017/02/20 8:59 a.m.•50 views

CVE-2016-7611

8.8CVSS8AI score0.00745EPSS

CVE•added 2019/12/18 6:15 p.m.•50 views

CVE-2019-6236

A race condition existed during the installation of iCloud for Windows. This was addressed with improved state handling. This issue is fixed in iCloud for Windows 7.11. Running the iCloud installer in an untrusted directory may result in arbitrary code execution.

7.6CVSS7.9AI score0.00371EPSS

CVE•added 2017/02/20 8:59 a.m.•49 views

CVE-2016-7640

8.8CVSS8AI score0.00774EPSS

CVE•added 2017/02/20 8:59 a.m.•48 views

CVE-2016-7648

8.8CVSS8AI score0.00728EPSS

CVE•added 2017/02/20 8:59 a.m.•47 views

CVE-2016-7583

An issue was discovered in certain Apple products. iCloud before 6.0.1 is affected. The issue involves the setup subsystem in the "iCloud" component. It allows local users to gain privileges via a crafted dynamic library in an unspecified directory.

7.8CVSS7AI score0.00056EPSS

CVE•added 2017/02/20 8:59 a.m.•47 views

CVE-2016-7642

8.8CVSS8AI score0.00728EPSS

CVE•added 2017/02/20 8:59 a.m.•47 views

CVE-2016-7649

8.8CVSS8AI score0.00728EPSS

CVE•added 2019/01/11 6:29 p.m.•41 views

CVE-2018-4147

In iCloud for Windows before 7.3, Safari before 11.0.3, iTunes before 12.7.3 for Windows, and iOS before 11.2.5, multiple memory corruption issues exist and were addressed with improved memory handling.

9.8CVSS9AI score0.00785EPSS

CVE•added 2019/04/03 6:29 p.m.•40 views

CVE-2018-4439

A logic issue was addressed with improved validation. This issue affected versions prior to iOS 12.1.1, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.

6.5CVSS6.6AI score0.00344EPSS

CVE•added 2019/12/18 6:15 p.m.•39 views

CVE-2019-6232

A race condition existed during the installation of iTunes for Windows. This was addressed with improved state handling. This issue is fixed in iCloud for Windows 7.11. Running the iTunes installer in an untrusted directory may result in arbitrary code execution.

7.6CVSS7.9AI score0.00364EPSS

CVE•added 2017/02/20 8:59 a.m.•38 views

CVE-2016-7614

An issue was discovered in certain Apple products. iCloud before 6.1 is affected. The issue involves the "Windows Security" component. It allows local users to obtain sensitive information from iCloud desktop-client process memory via unspecified vectors.

5.5CVSS5.1AI score0.00129EPSS

Total number of security vulnerabilities449