The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 makes routing changes in response to ICMP_REDIRECT messages, which allows remote attackers to cause a denial of service (network outage) or obtain sensitive packet-content information via a crafted ICMP packet.
Max CVSS
7.5
EPSS Score
7.35%
Published
2015-04-10
Updated
2019-03-08
The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 does not properly handle TCP headers, which allows man-in-the-middle attackers to cause a denial of service via unspecified vectors.
Max CVSS
7.1
EPSS Score
19.68%
Published
2015-04-10
Updated
2019-03-08
iWork in Apple iOS before 8.3 and Apple OS X before 10.10.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted iWork file.
Max CVSS
7.3
EPSS Score
0.43%
Published
2015-04-10
Updated
2019-09-27
IOHIDFamily in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows physically proximate attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted HID device.
Max CVSS
7.2
EPSS Score
0.08%
Published
2015-04-10
Updated
2019-03-08
4 vulnerabilities found