| Max CVSS | 9.3 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-4452 | 5.4 |
WebKit, as used in Apple iOS before 8.1.1 and Apple TV before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2
|
16-07-2019 - 12:22 | 18-11-2014 - 11:59 | |
| CVE-2014-4461 | 9.3 |
The kernel in Apple iOS before 8.1.1 and Apple TV before 7.0.2 does not properly validate IOSharedDataQueue object metadata, which allows attackers to execute arbitrary code in a privileged context via a crafted application. Per an <a href="http://su
|
08-03-2019 - 16:06 | 18-11-2014 - 11:59 | |
| CVE-2014-4455 | 2.1 |
dyld in Apple iOS before 8.1.1 and Apple TV before 7.0.2 does not properly handle overlapping segments in Mach-O executable files, which allows local users to bypass intended code-signing restrictions via a crafted file. Per an <a href="http://suppor
|
08-03-2019 - 16:06 | 18-11-2014 - 11:59 | |
| CVE-2014-4462 | 5.8 |
WebKit, as used in Apple iOS before 8.1.1 and Apple TV before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2
|
08-03-2019 - 16:06 | 18-11-2014 - 11:59 | |
| CVE-2014-4457 | 7.5 |
The Sandbox Profiles subsystem in Apple iOS before 8.1.1 does not properly implement the debugserver sandbox, which allows attackers to bypass intended binary-execution restrictions via a crafted application that is run during a time period when debu
|
29-08-2017 - 01:35 | 18-11-2014 - 11:59 | |
| CVE-2014-4451 | 7.2 |
Apple iOS before 8.1.1 does not properly enforce the failed-passcode limit, which makes it easier for physically proximate attackers to bypass the lock-screen protection mechanism via a series of guesses.
|
29-08-2017 - 01:35 | 18-11-2014 - 11:59 | |
| CVE-2014-4453 | 5.0 |
Apple iOS before 8.1.1 and OS X before 10.10.1 include location data during establishment of a Spotlight Suggestions server connection by Spotlight or Safari, which might allow remote attackers to obtain sensitive information via unspecified vectors.
|
29-08-2017 - 01:35 | 18-11-2014 - 11:59 | |
| CVE-2014-4463 | 2.1 |
Apple iOS before 8.1.1 allows physically proximate attackers to bypass the lock-screen protection mechanism, and view or transmit a Photo Library photo, via the FaceTime "Leave a Message" feature.
|
29-08-2017 - 01:35 | 18-11-2014 - 11:59 | |
| CVE-2014-4460 | 2.1 |
CFNetwork in Apple iOS before 8.1.1 and OS X before 10.10.1 does not properly clear the browsing cache upon a transition out of private-browsing mode, which makes it easier for physically proximate attackers to obtain sensitive information by reading
|
29-08-2017 - 01:35 | 18-11-2014 - 11:59 |