NotCVE - vendor:"Apple" product:"Iphone Os" version:"10.0"

Page 149 of 2166 results (0.024 seconds)

CVSS: 8.8EPSS: 2%CPEs: 6EXPL: 0

CVE-2019-6233 – Apple Safari RenderBlockFlow Use-After-Free Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2019-6233

23 Jan 2019 — A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordó un problema de corrupción de memoria con la mejora de la gestión de memoria. Este problema se ha resuelto en iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 para Windows y iCloud para Windows 7.10. • http://www.securityfocus.com/bid/106691 • CWE-787: Out-of-bounds Write •

CVSS: 8.8EPSS: 2%CPEs: 7EXPL: 0

CVE-2019-6234 – Apple Safari CSSFontFace Use-After-Free Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2019-6234

CVSS: 8.1EPSS: 1%CPEs: 9EXPL: 0

CVE-2018-20506 – Apple Security Advisory 2019-1-22-3

https://notcve.org/view.php?id=CVE-2018-20506

23 Jan 2019 — SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and resultant buffer overflow) for FTS3 queries in a "merge" operation that occurs after crafted changes to FTS3 shadow tables, allowing remote attackers to execute arbitrary code by leveraging the ability to run arbitrary SQL statements (such as in certain WebSQL use cases). This is a different vulnerability than CVE-2018-20346. En SQLite, en versiones anteriores a la 3.25.3, cuando está habilitada la extensión FTS3, ... • http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00070.html • CWE-190: Integer Overflow or Wraparound •

CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 1

CVE-2018-4185

https://notcve.org/view.php?id=CVE-2018-4185

11 Jan 2019 — In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state. This issue was addressed with improved state handling. En iOS en versiones anteriores a la 11.3, tvOS en versiones anteriores a la 11.3, watchOS en versiones anteriores a la 4.3 y macOS en versiones anteriores a High Sierra 10.13.4, existía un problema de divulgación de información en la transición del estado del programa. Este problema s... • https://github.com/bazad/x18-leak • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0

CVE-2018-4147

https://notcve.org/view.php?id=CVE-2018-4147

11 Jan 2019 — In iCloud for Windows before 7.3, Safari before 11.0.3, iTunes before 12.7.3 for Windows, and iOS before 11.2.5, multiple memory corruption issues exist and were addressed with improved memory handling. En iCloud para Windows en versiones anteriores a la 7.3, Safari en versiones anteriores a la 11.0.3, iTunes en versiones anteriores a la 12.7.3 para Windows e iOS en versiones anteriores a la 11.2.5, existen múltiples corrupciones de memoria y fueron abordadas mediante la mejora de la gestión de memoria. • https://support.apple.com/HT208463 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0

CVE-2018-4194

https://notcve.org/view.php?id=CVE-2018-4194

11 Jan 2019 — In iOS before 11.4, iCloud for Windows before 7.5, watchOS before 4.3.1, iTunes before 12.7.5 for Windows, and macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation. En iOS en versiones anteriores a la 11.4, iCloud para Windows en versiones anteriores a la 7.5, watchOS en versiones anteriores a la 4.3.1, iTunes en versiones anteriores a la 12.7.5 para Windows y macOS High Sierra en versiones anteriores a la 10.13.5, se abordó una lectura fuera de límites con la... • https://support.apple.com/HT208848 • CWE-125: Out-of-bounds Read •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2017-13891

https://notcve.org/view.php?id=CVE-2017-13891

11 Jan 2019 — In iOS before 11.2, an inconsistent user interface issue was addressed through improved state management. En iOS en versiones anteriores a la 11.2, se abordó un problema de interfaz de usuario inconsistente mediante la mejora de la gestión de estados. • https://support.apple.com/HT208334 • CWE-20: Improper Input Validation •

CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0

CVE-2018-4189

https://notcve.org/view.php?id=CVE-2018-4189

11 Jan 2019 — In iOS before 11.2.5, macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, watchOS before 4.2.2, and tvOS before 11.2.5, a memory corruption issue exists and was addressed with improved memory handling. En iOS en versiones anteriores a la 11.2.5, macOS High Sierra en versiones anteriores a la 10.13.3, las actualizaciones de seguridad (Security Update) 2018-001 Sierra y 2018-001 El Capitan, watchOS en versiones anteriores a la 4.2.2 y tvOS en versiones a... • https://support.apple.com/HT208462 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2017-13888

https://notcve.org/view.php?id=CVE-2017-13888

11 Jan 2019 — In iOS before 11.2, a type confusion issue was addressed with improved memory handling. En iOS en versiones anteriores a la 11.2, se abordó un problema de confusión de tipos con la mejora de la gestión de memoria. • https://support.apple.com/HT208334 • CWE-704: Incorrect Type Conversion or Cast •

CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0

CVE-2017-2411

https://notcve.org/view.php?id=CVE-2017-2411

11 Jan 2019 — In iOS before 11.2, exchange rates were retrieved from HTTP rather than HTTPS. This was addressed by enabling HTTPS for exchange rates. En iOS en versiones anteriores a la 11.2, los tipos de cambio se recuperaron de HTTP en lugar de HTTPS. Esto se abordó habilitando HTTPS para los tipos de cambio. • https://support.apple.com/HT208334 • CWE-254: 7PK - Security Features •

1...147 148 149 150 151