Shodan
Vulnerabilities
Vulnerable Software
Apple:  >> Tvos  Security Vulnerabilities
CVE-2014-4377
Integer overflow in CoreGraphics in Apple iOS before 8 and Apple TV before 7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document.
CVSS Score
6.8
EPSS Score
0.113
Published
2014-09-18
CVE-2014-4378
CoreGraphics in Apple iOS before 8 and Apple TV before 7 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and application crash) via a crafted PDF document.
CVSS Score
5.8
EPSS Score
0.021
Published
2014-09-18
CVE-2014-4379
An unspecified IOHIDFamily function in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking to prevent reading of kernel pointers, which allows attackers to bypass the ASLR protection mechanism via a crafted application.
CVSS Score
7.1
EPSS Score
0.019
Published
2014-09-18
CVE-2014-4380
The IOHIDFamily kernel extension in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking on write operations, which allows attackers to execute arbitrary code in the kernel's context via a crafted application.
CVSS Score
9.3
EPSS Score
0.024
Published
2014-09-18
CVE-2014-4381
Libnotify in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking on write operations, which allows attackers to execute arbitrary code as root via a crafted application.
CVSS Score
9.3
EPSS Score
0.017
Published
2014-09-18
CVE-2014-4383
The Assets subsystem in Apple iOS before 8 and Apple TV before 7 allows man-in-the-middle attackers to spoof a device's update status via a crafted Last-Modified HTTP response header.
CVSS Score
4.3
EPSS Score
0.006
Published
2014-09-18
CVE-2014-4388
IOKit in Apple iOS before 8 and Apple TV before 7 does not properly validate IODataQueue object metadata, which allows attackers to execute arbitrary code in a privileged context via an application that provides crafted values in unspecified metadata fields, a different vulnerability than CVE-2014-4418.
CVSS Score
7.8
EPSS Score
0.005
Published
2014-09-18
CVE-2014-4389
Integer overflow in IOKit in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted API arguments.
CVSS Score
9.3
EPSS Score
0.017
Published
2014-09-18
CVE-2014-4404
Known exploited
Heap-based buffer overflow in IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted key-mapping properties.
CVSS Score
7.8
EPSS Score
0.62
Published
2014-09-18
CVE-2014-4405
IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via an application that provides crafted key-mapping properties.
CVSS Score
9.3
EPSS Score
0.018
Published
2014-09-18


Products
Pricing
Contact Us

Shodan ® - All rights reserved