Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
AppleIphone Os

125 matches found

CVE
CVEadded 2018/04/13 5:29 p.m.57 views

CVE-2018-4173

An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10.13.4 is affected. The issue involves the "Status Bar" component. It allows invisible microphone access via a crafted app.

5.5CVSS5.5AI score0.00136EPSS
CVE
CVEadded 2018/06/08 6:29 p.m.57 views

CVE-2018-4244

An issue was discovered in certain Apple products. iOS before 11.4 is affected. The issue involves the "Siri Contacts" component. It allows physically proximate attackers to discover private contact information via Siri.

4.6CVSS4.4AI score0.00072EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.55 views

CVE-2018-4134

An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves the "Safari" component. It allows remote attackers to spoof the user interface via a crafted web site.

8.8CVSS6.6AI score0.01661EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.55 views

CVE-2018-4148

An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves the "Telephony" component. A buffer overflow allows remote attackers to execute arbitrary code.

9.8CVSS8AI score0.08821EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.55 views

CVE-2018-4172

An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves the "Find My iPhone" component. It allows physically proximate attackers to bypass the iCloud password requirement for disabling the "Find My iPhone" feature via vectors involving a backup restore.

4.6CVSS4.5AI score0.0008EPSS
CVE
CVEadded 2018/06/08 6:29 p.m.55 views

CVE-2018-4252

An issue was discovered in certain Apple products. iOS before 11.4 is affected. The issue involves the "Siri" component. It allows physically proximate attackers to bypass the lock-screen protection mechanism and obtain private notification content via Siri.

4.6CVSS4.6AI score0.00072EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.54 views

CVE-2018-4151

An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10.13.4 is affected. The issue involves the "iCloud Drive" component. A race condition allows attackers to execute arbitrary code in a privileged context via a crafted app.

7.6CVSS7.2AI score0.00169EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.53 views

CVE-2018-4140

An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves the "Telephony" component. It allows remote attackers to cause a denial of service (NULL pointer dereference and reboot) via a Class 0 SMS message.

7.8CVSS6.3AI score0.01471EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.53 views

CVE-2018-4149

An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves the "SafariViewController" component. It allows remote attackers to spoof the user interface via a crafted web site that leverages input into a partially loaded page.

8.8CVSS6.6AI score0.01661EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.53 views

CVE-2018-4156

An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10.13.4 is affected. The issue involves the "PluginKit" component. A race condition allows attackers to execute arbitrary code in a privileged context via a crafted app.

7.6CVSS7.2AI score0.00169EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.53 views

CVE-2018-4168

An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves the "Files Widget" component. It allows physically proximate attackers to obtain sensitive information by leveraging the display of cached data on a locked device.

4.6CVSS4.2AI score0.00095EPSS
CVE
CVEadded 2018/06/08 6:29 p.m.52 views

CVE-2018-4215

An issue was discovered in certain Apple products. iOS before 11.4 is affected. The issue involves the "Bluetooth" component. It allows attackers to gain privileges or cause a denial of service (buffer overflow) via a crafted app.

7.8CVSS6.6AI score0.00212EPSS
CVE
CVEadded 2018/06/08 6:29 p.m.52 views

CVE-2018-4238

An issue was discovered in certain Apple products. iOS before 11.4 is affected. The issue involves the "Siri" component. It allows physically proximate attackers to bypass the lock-screen protection mechanism and enable Siri.

2.4CVSS4.1AI score0.00059EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.51 views

CVE-2018-4082

An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10.13.3 is affected. tvOS before 11.2.5 is affected. watchOS before 4.2.2 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or c...

9.3CVSS8.1AI score0.00187EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.50 views

CVE-2017-7003

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "CoreText" component. It allows remote attackers to cause a denial of service (application cra...

5.5CVSS5.6AI score0.00277EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.50 views

CVE-2018-4085

An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10.13.3 is affected. tvOS before 11.2.5 is affected. watchOS before 4.2.2 is affected. The issue involves the "QuartzCore" component. It allows remote attackers to execute arbitrary code or cause a denial...

8.8CVSS9.1AI score0.00807EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.50 views

CVE-2018-4110

An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves the "Web App" component. It allows remote attackers to bypass intended restrictions on cookie persistence.

9.8CVSS7.2AI score0.03279EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.49 views

CVE-2017-7004

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. The issue involves the "Security" component. A race condition allows attackers to bypass intended entitlement restrictions for sending XPC messages via a crafted app.

7CVSS6.3AI score0.05611EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.49 views

CVE-2018-4092

An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10.13.3 is affected. tvOS before 11.2.5 is affected. watchOS before 4.2.2 is affected. The issue involves the "Kernel" component. A race condition allows attackers to bypass intended memory-read restricti...

4.7CVSS4.8AI score0.00209EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.49 views

CVE-2018-4095

An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. tvOS before 11.2.5 is affected. watchOS before 4.2.2 is affected. The issue involves the "Core Bluetooth" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (...

9.3CVSS8.2AI score0.00207EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.48 views

CVE-2017-6976

An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue involves the "Sandbox Profiles" component. It allows attackers to bypass intended access restrictions (for iCloud user records) via a crafted app.

5.5CVSS5.5AI score0.00226EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.48 views

CVE-2018-4090

An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10.13.3 is affected. tvOS before 11.2.5 is affected. watchOS before 4.2.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a craf...

5.5CVSS5.4AI score0.04499EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.47 views

CVE-2018-4109

An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. tvOS before 11.2.5 is affected. watchOS before 4.2.2 is affected. The issue involves the "Graphics Driver" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service ...

9.3CVSS8.2AI score0.0024EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.42 views

CVE-2017-7001

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted we...

8.8CVSS8.5AI score0.0093EPSS
CVE
CVEadded 2018/04/03 6:29 a.m.40 views

CVE-2018-4093

An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10.13.3 is affected. tvOS before 11.2.5 is affected. watchOS before 4.2.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a craf...

5.5CVSS5.4AI score0.0027EPSS
Total number of security vulnerabilities125