Shodan
Vulnerabilities
Vulnerable Software
Apple:  >> Iphone Os  >> 1.0.1  Security Vulnerabilities
CVE-2015-5758
ImageIO in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted TIFF image.
CVSS Score
6.8
EPSS Score
0.028
Published
2015-08-17
CVE-2015-5757
libpthread in Apple iOS before 8.4.1 and OS X before 10.10.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via an app that uses a crafted syscall to interfere with locking.
CVSS Score
9.3
EPSS Score
0.011
Published
2015-08-17
CVE-2015-5756
FontParser in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted font file, a different vulnerability than CVE-2015-3804 and CVE-2015-5775.
CVSS Score
6.8
EPSS Score
0.021
Published
2015-08-17
CVE-2015-5755
CoreText in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted font file, a different vulnerability than CVE-2015-5761.
CVSS Score
6.8
EPSS Score
0.028
Published
2015-08-17
CVE-2015-5752
Backup in Apple iOS before 8.4.1 allows attackers to bypass intended restrictions on filesystem access via a crafted app that creates a symlink.
CVSS Score
5.0
EPSS Score
0.004
Published
2015-08-17
CVE-2015-5749
The Sandbox_profiles component in Apple iOS before 8.4.1 allows attackers to bypass the third-party app-sandbox protection mechanism and read arbitrary managed preferences via a crafted app.
CVSS Score
4.3
EPSS Score
0.003
Published
2015-08-17
CVE-2015-5748
The kernel in Apple OS X before 10.10.5 does not properly mount HFS volumes, which allows local users to cause a denial of service via a crafted volume.
CVSS Score
2.1
EPSS Score
0.001
Published
2015-08-17
CVE-2015-5746
AppleFileConduit in Apple iOS before 8.4.1 allows attackers to bypass intended restrictions on filesystem access via an afc command that leverages symlink mishandling.
CVSS Score
5.0
EPSS Score
0.002
Published
2015-08-17
CVE-2015-3807
libxml2 in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (memory corruption) via a crafted XML document.
CVSS Score
4.3
EPSS Score
0.024
Published
2015-08-17
CVE-2015-3806
Apple iOS before 8.4.1 and OS X before 10.10.5 allow local users to bypass a code-signing protection mechanism by appending code to a crafted executable file.
CVSS Score
7.2
EPSS Score
0.001
Published
2015-08-17


Products
Pricing
Contact Us

Shodan ® - All rights reserved