Iphone Os

iphone_os

Vendor: Apple • 4,015 CVEs

CVEs (4,015)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2015-7080 1Apple 1Iphone Os May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 2.1 LOW· v2 Siri in Apple iOS before 9.2 allows physically proximate attackers to bypass an intended client-side protection mechanism and obtain sensitive content-notification information by listening to a device in the lock-screen...Show more Siri in Apple iOS before 9.2 allows physically proximate attackers to bypass an intended client-side protection mechanism and obtain sensitive content-notification information by listening to a device in the lock-screen state.Show less
CVE-2015-7079 1Apple 2Iphone Os Tvos May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 9.3 HIGH· v2 dyld in Apple iOS before 9.2 and tvOS before 9.1 mishandles segment validation, which allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2015-7075 1Apple 4Iphone Os Mac Os XTvos+1 more May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 CoreMedia Playback in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a malformed...Show more CoreMedia Playback in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a malformed media file.Show less
CVE-2015-7074 1Apple 3Iphone Os Mac Os XTvos May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 CoreMedia Playback in Apple iOS before 9.2, OS X before 10.11.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a malformed media file.
CVE-2015-7073 1Apple 4Iphone Os Mac Os XTvos+1 more May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted SSL...Show more Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted SSL handshake.Show less
CVE-2015-7072 1Apple 3Iphone Os TvosWatchos May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 9.3 HIGH· v2 dyld in Apple iOS before 9.2, tvOS before 9.1, and watchOS before 2.1 mishandles segment validation, which allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2015-7070 1Apple 1Iphone Os May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 9.3 HIGH· v2 Mobile Replayer in GPUTools Framework in Apple iOS before 9.2 allows attackers to execute arbitrary code in a privileged context via an app that provides a crafted pathname, a different vulnerability than CVE-2015-7069.
CVE-2015-7069 1Apple 1Iphone Os May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 9.3 HIGH· v2 Mobile Replayer in GPUTools Framework in Apple iOS before 9.2 allows attackers to execute arbitrary code in a privileged context via an app that provides a crafted pathname, a different vulnerability than CVE-2015-7070.
CVE-2015-7068 1Apple 4Iphone Os Mac Os XTvos+1 more May 6, 2026 Dec 11, 2015 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 IOKit SCSI in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference)...Show more IOKit SCSI in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via an app that provides an unspecified userclient type.Show less
CVE-2015-7066 1Apple 4Iphone Os Mac Os XTvos+1 more May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 OpenGL in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a di...Show more OpenGL in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2015-7064.Show less
CVE-2015-7065 1Apple 3Iphone Os Mac Os XTvos May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 OpenGL in Apple iOS before 9.2, OS X before 10.11.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.
CVE-2015-7064 1Apple 4Iphone Os Mac Os XTvos+1 more May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 OpenGL in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a di...Show more OpenGL in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2015-7066.Show less
CVE-2015-7062 1Apple 2Iphone Os Mac Os X May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Apple OS X before 10.11.2 and tvOS before 9.1 allow local users to bypass intended configuration-profile installation restrictions via unspecified vectors.
CVE-2015-7058 1Apple 3Iphone Os Mac Os XTvos May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Apple iOS before 9.2, OS X before 10.11.2, and tvOS before 9.1 improperly validate keychain item ACLs, which allows attackers to obtain access to keychain items via a crafted app.
CVE-2015-7055 1Apple 2Iphone Os Tvos May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 9.3 HIGH· v2 AppleMobileFileIntegrity in Apple iOS before 9.2 and tvOS before 9.1 does not prevent changes to access-control structures, which allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2015-7054 1Apple 4Iphone Os Mac Os XTvos+1 more May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 zlib in the Compression component in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 does not initialize memory for an unspecified data structure, which allows remote attackers to execu...Show more zlib in the Compression component in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 does not initialize memory for an unspecified data structure, which allows remote attackers to execute arbitrary code via a crafted web site.Show less
CVE-2015-7053 1Apple 4Iphone Os Mac Os XTvos+1 more May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 ImageIO in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted image.
CVE-2015-7051 1Apple 2Iphone Os Tvos May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 9.3 HIGH· v2 MobileStorageMounter in Apple iOS before 9.2 and tvOS before 9.1 mishandles the timing of trust-cache loading, which allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2015-7050 1Apple 2Iphone Os Safari May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 WebKit in Apple iOS before 9.2 and Safari before 9.0.2 misparses content extensions, which allows remote attackers to obtain sensitive browsing-history information via a crafted web site.
CVE-2015-7048 1Apple 3Iphone Os SafariTvos May 6, 2026 Dec 11, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a...Show more WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7095, CVE-2015-7096, CVE-2015-7097, CVE-2015-7098, CVE-2015-7099, CVE-2015-7100, CVE-2015-7101, CVE-2015-7102, and CVE-2015-7103.Show less

Previous 1...155156157...201 Next