Shodan
Vulnerabilities
Vulnerable Software
Apple:  >> Mac Os X  >> 10.5  Security Vulnerabilities
CVE-2014-4375
Double free vulnerability in Apple iOS before 8 and Apple TV before 7 allows local users to gain privileges or cause a denial of service (device crash) via vectors related to Mach ports.
CVSS Score
7.8
EPSS Score
0.001
Published
2014-09-18
CVE-2014-4377
Integer overflow in CoreGraphics in Apple iOS before 8 and Apple TV before 7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document.
CVSS Score
6.8
EPSS Score
0.113
Published
2014-09-18
CVE-2014-4378
CoreGraphics in Apple iOS before 8 and Apple TV before 7 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and application crash) via a crafted PDF document.
CVSS Score
5.8
EPSS Score
0.021
Published
2014-09-18
CVE-2014-4379
An unspecified IOHIDFamily function in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking to prevent reading of kernel pointers, which allows attackers to bypass the ASLR protection mechanism via a crafted application.
CVSS Score
7.1
EPSS Score
0.019
Published
2014-09-18
CVE-2014-4381
Libnotify in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking on write operations, which allows attackers to execute arbitrary code as root via a crafted application.
CVSS Score
9.3
EPSS Score
0.017
Published
2014-09-18
CVE-2014-4388
IOKit in Apple iOS before 8 and Apple TV before 7 does not properly validate IODataQueue object metadata, which allows attackers to execute arbitrary code in a privileged context via an application that provides crafted values in unspecified metadata fields, a different vulnerability than CVE-2014-4418.
CVSS Score
7.8
EPSS Score
0.005
Published
2014-09-18
CVE-2014-4389
Integer overflow in IOKit in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted API arguments.
CVSS Score
9.3
EPSS Score
0.017
Published
2014-09-18
CVE-2014-4404
Known exploited
Heap-based buffer overflow in IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted key-mapping properties.
CVSS Score
7.8
EPSS Score
0.62
Published
2014-09-18
CVE-2014-4405
IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via an application that provides crafted key-mapping properties.
CVSS Score
9.3
EPSS Score
0.018
Published
2014-09-18
CVE-2014-4407
IOKit in Apple iOS before 8 and Apple TV before 7 does not properly initialize kernel memory, which allows attackers to obtain sensitive memory-content information via an application that makes crafted IOKit function calls.
CVSS Score
3.3
EPSS Score
0.002
Published
2014-09-18


Products
Pricing
Contact Us

Shodan ® - All rights reserved