Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Apple Subscribe
Filtered by product Tvos
Total 1495 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-1748 1 Apple 4 Iphone Os, Mac Os X, Tvos and 1 more 2019-03-25 4.3 MEDIUM 3.3 LOW
IOHIDFamily in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to obtain sensitive kernel memory-layout information via a crafted app.
CVE-2016-1811 1 Apple 4 Iphone Os, Mac Os X, Tvos and 1 more 2019-03-25 4.3 MEDIUM 6.5 MEDIUM
ImageIO in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image.
CVE-2016-1753 1 Apple 4 Iphone Os, Mac Os X, Tvos and 1 more 2019-03-25 9.3 HIGH 7.8 HIGH
Multiple integer overflows in the kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allow attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2016-1807 1 Apple 4 Iphone Os, Mac Os X, Tvos and 1 more 2019-03-25 1.9 LOW 5.1 MEDIUM
Race condition in the Disk Images subsystem in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows local users to obtain sensitive information from kernel memory via unspecified vectors.
CVE-2016-1801 1 Apple 3 Iphone Os, Mac Os X, Tvos 2019-03-25 5.0 MEDIUM 7.5 HIGH
The CFNetwork Proxies subsystem in Apple iOS before 9.3.2, OS X before 10.11.5, and tvOS before 9.2.1 mishandles URLs in http and https requests, which allows remote attackers to obtain sensitive information via unspecified vectors.
CVE-2016-1808 1 Apple 4 Iphone Os, Mac Os X, Tvos and 1 more 2019-03-25 9.3 HIGH 7.8 HIGH
The Disk Images subsystem in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-1784 1 Apple 3 Iphone Os, Safari, Tvos 2019-03-25 4.3 MEDIUM 6.5 MEDIUM
The History implementation in WebKit in Apple iOS before 9.3, Safari before 9.1, and tvOS before 9.2 allows remote attackers to cause a denial of service (resource consumption and application crash) via a crafted web site.
CVE-2016-1823 1 Apple 4 Iphone Os, Mac Os X, Tvos and 1 more 2019-03-25 9.3 HIGH 7.8 HIGH
The IOHIDDevice::handleReportWithTime function in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (out-of-bounds read and memory corruption) via a crafted IOHIDReportType enum, which triggers an incorrect cast, a different vulnerability than CVE-2016-1824.
CVE-2016-1813 1 Apple 4 Iphone Os, Mac Os X, Tvos and 1 more 2019-03-25 9.3 HIGH 7.8 HIGH
The IOAccelSharedUserClient2::page_off_resource method in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app.
CVE-2016-1752 1 Apple 4 Iphone Os, Mac Os X, Tvos and 1 more 2019-03-25 7.1 HIGH 5.5 MEDIUM
The kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to cause a denial of service via a crafted app.
CVE-2016-1754 1 Apple 4 Iphone Os, Mac Os X, Tvos and 1 more 2019-03-25 9.3 HIGH 7.8 HIGH
The kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1755.
CVE-2016-1755 1 Apple 4 Iphone Os, Mac Os X, Tvos and 1 more 2019-03-25 9.3 HIGH 7.8 HIGH
The kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1754.
CVE-2016-1751 1 Apple 3 Iphone Os, Tvos, Watchos 2019-03-25 6.8 MEDIUM 7.8 HIGH
The kernel in Apple iOS before 9.3, tvOS before 9.2, and watchOS before 2.2 does not properly restrict the execute permission, which allows attackers to bypass a code-signing protection mechanism via a crafted app.
CVE-2016-1819 1 Apple 4 Iphone Os, Mac Os X, Tvos and 1 more 2019-03-25 9.3 HIGH 7.8 HIGH
Use-after-free vulnerability in the IOAccelContext2::clientMemoryForType method in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1817 and CVE-2016-1818.
CVE-2016-1775 1 Apple 4 Iphone Os, Mac Os X, Tvos and 1 more 2019-03-25 9.3 HIGH 7.8 HIGH
TrueTypeScaler in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file.
CVE-2016-1783 2 Apple, Webkitgtk 4 Iphone Os, Safari, Tvos and 1 more 2019-03-25 9.3 HIGH 8.8 HIGH
WebKit in Apple iOS before 9.3, Safari before 9.1, and tvOS before 9.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.
CVE-2016-1750 1 Apple 4 Iphone Os, Mac Os X, Tvos and 1 more 2019-03-25 9.3 HIGH 7.8 HIGH
Use-after-free vulnerability in the kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2016-1727 2 Apple, Webkitgtk 5 Iphone Os, Safari, Tvos and 2 more 2019-03-25 9.3 HIGH 8.8 HIGH
WebKit, as used in Apple iOS before 9.2.1, Safari before 9.0.3, and tvOS before 9.1.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-1724.
CVE-2016-1724 2 Apple, Webkitgtk 5 Iphone Os, Safari, Tvos and 2 more 2019-03-25 6.8 MEDIUM 8.8 HIGH
WebKit, as used in Apple iOS before 9.2.1, Safari before 9.0.3, and tvOS before 9.1.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-1727.
CVE-2016-4584 1 Apple 3 Iphone Os, Safari, Tvos 2019-03-25 6.8 MEDIUM 8.8 HIGH
The WebKit Page Loading implementation in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.