This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Apple First view 2007-07-23
Product Iphone Os Last view 2020-12-08
Version Type Os
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:o:apple:iphone_os:2.1:*:*:*:*:*:*:* 2190
cpe:2.3:o:apple:iphone_os:2.0.2:*:*:*:*:*:*:* 2189
cpe:2.3:o:apple:iphone_os:2.0:*:*:*:*:*:*:* 2189
cpe:2.3:o:apple:iphone_os:1.1.1:*:*:*:*:*:*:* 2189
cpe:2.3:o:apple:iphone_os:2.0.1:*:*:*:*:*:*:* 2189
cpe:2.3:o:apple:iphone_os:1.0.1:*:*:*:*:*:*:* 2188
cpe:2.3:o:apple:iphone_os:1.0.2:*:*:*:*:*:*:* 2188
cpe:2.3:o:apple:iphone_os:1.1.4:*:*:*:*:*:*:* 2188
cpe:2.3:o:apple:iphone_os:1.1.3:*:*:*:*:*:*:* 2188
cpe:2.3:o:apple:iphone_os:1.1.2:*:*:*:*:*:*:* 2188
cpe:2.3:o:apple:iphone_os:1.1.5:*:*:*:*:*:*:* 2188
cpe:2.3:o:apple:iphone_os:3.1:*:*:*:*:*:*:* 2185
cpe:2.3:o:apple:iphone_os:1.0.0:*:*:*:*:*:*:* 2181
cpe:2.3:o:apple:iphone_os:2.1.1:*:*:*:*:*:*:* 2180
cpe:2.3:o:apple:iphone_os:1.1.0:*:*:*:*:*:*:* 2180
cpe:2.3:o:apple:iphone_os:2.0.0:*:*:*:*:*:*:* 2180
cpe:2.3:o:apple:iphone_os:2.2:*:*:*:*:*:*:* 2180
cpe:2.3:o:apple:iphone_os:2.2.1:*:*:*:*:*:*:* 2180
cpe:2.3:o:apple:iphone_os:3.0:-:iphone:*:*:*:*:* 2179
cpe:2.3:o:apple:iphone_os:3.2.1:*:*:*:*:*:*:* 2178
cpe:2.3:o:apple:iphone_os:3.1:-:ipodtouch:*:*:*:*:* 2177
cpe:2.3:o:apple:iphone_os:3.1:-:iphone:*:*:*:*:* 2177
cpe:2.3:o:apple:iphone_os:3.2.2:*:*:*:*:*:*:* 2176
cpe:2.3:o:apple:iphone_os:3.0:*:*:*:*:*:*:* 2174
cpe:2.3:o:apple:iphone_os:3.0.1:*:*:*:*:*:*:* 2174
cpe:2.3:o:apple:iphone_os:3.1.3:-:iphone:*:*:*:*:* 2174
cpe:2.3:o:apple:iphone_os:3.1.2:-:iphone:*:*:*:*:* 2174
cpe:2.3:o:apple:iphone_os:3.2:-:ipodtouch:*:*:*:*:* 2174
cpe:2.3:o:apple:iphone_os:3.2:-:iphone:*:*:*:*:* 2174
cpe:2.3:o:apple:iphone_os:1.0:*:*:*:*:*:*:* 2174
cpe:2.3:o:apple:iphone_os:4.0:*:*:*:*:*:*:* 2173
cpe:2.3:o:apple:iphone_os:1.1:*:*:*:*:*:*:* 2173
cpe:2.3:o:apple:iphone_os:3.2.1:-:ipad:*:*:*:*:* 2172
cpe:2.3:o:apple:iphone_os:4.0.1:*:*:*:*:*:*:* 2171
cpe:2.3:o:apple:iphone_os:4.0.2:*:*:*:*:*:*:* 2169
cpe:2.3:o:apple:iphone_os:2.1:-:ipodtouch:*:*:*:*:* 2168
cpe:2.3:o:apple:iphone_os:2.0.1:-:ipodtouch:*:*:*:*:* 2168
cpe:2.3:o:apple:iphone_os:1.0.0:-:iphone:*:*:*:*:* 2168
cpe:2.3:o:apple:iphone_os:2.0.0:-:ipodtouch:*:*:*:*:* 2168
cpe:2.3:o:apple:iphone_os:2.0.2:-:ipodtouch:*:*:*:*:* 2168
cpe:2.3:o:apple:iphone_os:1.1.3:-:iphone:*:*:*:*:* 2167
cpe:2.3:o:apple:iphone_os:1.1.4:-:ipodtouch:*:*:*:*:* 2167
cpe:2.3:o:apple:iphone_os:1.1.4:-:iphone:*:*:*:*:* 2167
cpe:2.3:o:apple:iphone_os:1.1.3:-:ipodtouch:*:*:*:*:* 2167
cpe:2.3:o:apple:iphone_os:1.1.5:-:iphone:*:*:*:*:* 2167
cpe:2.3:o:apple:iphone_os:2.0.0:-:iphone:*:*:*:*:* 2167
cpe:2.3:o:apple:iphone_os:1.1.5:-:ipodtouch:*:*:*:*:* 2167
cpe:2.3:o:apple:iphone_os:1.1.0:-:ipodtouch:*:*:*:*:* 2167
cpe:2.3:o:apple:iphone_os:1.0.1:-:iphone:*:*:*:*:* 2167
cpe:2.3:o:apple:iphone_os:1.1.2:-:ipodtouch:*:*:*:*:* 2167

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
7.8 2020-12-08 CVE-2020-9996

A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.0 and iPadOS 14.0. A malicious application may be able to elevate privileges.

4.3 2020-12-08 CVE-2020-9993

The issue was addressed with improved UI handling. This issue is fixed in watchOS 7.0, Safari 14.0, iOS 14.0 and iPadOS 14.0. Visiting a malicious website may lead to address bar spoofing.

7.5 2020-12-08 CVE-2020-9991

This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, iOS 14.0 and iPadOS 14.0, iCloud for Windows 7.21, tvOS 14.0. A remote attacker may be able to cause a denial of service.

5.5 2020-12-08 CVE-2020-9989

The issue was addressed with improved deletion. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, iOS 14.0 and iPadOS 14.0. A local user may be able to discover a user’s deleted messages.

5.5 2020-12-08 CVE-2020-9988

The issue was addressed with improved deletion. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.0 and iPadOS 14.0. A local user may be able to discover a user’s deleted messages.

7.8 2020-12-08 CVE-2020-9981

A use after free issue was addressed with improved memory management. This issue is fixed in watchOS 7.0, iOS 14.0 and iPadOS 14.0, iTunes for Windows 12.10.9, iCloud for Windows 11.5, tvOS 14.0, macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave. Processing a maliciously crafted file may lead to arbitrary code execution.

5.5 2020-12-08 CVE-2020-9977

A validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.0 and iPadOS 14.0. A malicious application may be able to determine a user's open tabs in Safari.

5.5 2020-12-08 CVE-2020-9974

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. A malicious application may be able to determine kernel memory layout.

7.8 2020-12-08 CVE-2020-9972

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 14.0 and iPadOS 14.0. Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution.

5.5 2020-12-08 CVE-2020-9969

An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, tvOS 14.0, iOS 14.0 and iPadOS 14.0. A local user may be able to view senstive user information.

7.8 2020-12-08 CVE-2020-9966

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, tvOS 14.0, iOS 14.0 and iPadOS 14.0. An application may be able to execute arbitrary code with kernel privileges.

7.8 2020-12-08 CVE-2020-9965

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, tvOS 14.0, iOS 14.0 and iPadOS 14.0. An application may be able to execute arbitrary code with kernel privileges.

5.5 2020-12-08 CVE-2020-9963

The issue was addressed with improved handling of icon caches. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.0 and iPadOS 14.0. A malicious app may be able to determine the existence of files on the computer.

7.8 2020-12-08 CVE-2020-9954

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in watchOS 7.0, tvOS 14.0, macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave, iOS 14.0 and iPadOS 14.0. Playing a malicious audio file may lead to arbitrary code execution.

8.8 2020-12-08 CVE-2020-9950

A use after free issue was addressed with improved memory management. This issue is fixed in watchOS 7.0, tvOS 14.0, Safari 14.0, iOS 14.0 and iPadOS 14.0. Processing maliciously crafted web content may lead to arbitrary code execution.

7.8 2020-12-08 CVE-2020-9949

A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, iOS 14.0 and iPadOS 14.0, macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra, tvOS 14.0. An application may be able to execute arbitrary code with kernel privileges.

8.8 2020-12-08 CVE-2020-9947

A use after free issue was addressed with improved memory management. This issue is fixed in watchOS 7.0, iOS 14.0 and iPadOS 14.0, iTunes for Windows 12.10.9, iCloud for Windows 11.5, tvOS 14.0, Safari 14.0. Processing maliciously crafted web content may lead to arbitrary code execution.

5.5 2020-12-08 CVE-2020-9944

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, tvOS 14.0, iOS 14.0 and iPadOS 14.0. An application may be able to read restricted memory.

5.5 2020-12-08 CVE-2020-9943

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, tvOS 14.0, iOS 14.0 and iPadOS 14.0. A malicious application may be able to read restricted memory.

5.5 2020-12-08 CVE-2020-27950

A memory initialization issue was addressed. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 12.4.9, watchOS 6.2.9, Security Update 2020-006 High Sierra, Security Update 2020-006 Mojave, iOS 14.2 and iPadOS 14.2, watchOS 5.3.9, macOS Catalina 10.15.7 Supplemental Update, macOS Catalina 10.15.7 Update. A malicious application may be able to disclose kernel memory.

7.8 2020-12-08 CVE-2020-27932

A type confusion issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 12.4.9, watchOS 6.2.9, Security Update 2020-006 High Sierra, Security Update 2020-006 Mojave, iOS 14.2 and iPadOS 14.2, watchOS 5.3.9, macOS Catalina 10.15.7 Supplemental Update, macOS Catalina 10.15.7 Update. A malicious application may be able to execute arbitrary code with kernel privileges.

7.8 2020-12-08 CVE-2020-27930

A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 12.4.9, watchOS 6.2.9, Security Update 2020-006 High Sierra, Security Update 2020-006 Mojave, iOS 14.2 and iPadOS 14.2, watchOS 5.3.9, macOS Catalina 10.15.7 Supplemental Update, macOS Catalina 10.15.7 Update. Processing a maliciously crafted font may lead to arbitrary code execution.

5.5 2020-12-08 CVE-2020-27929

A logic issue existed in the handling of Group FaceTime calls. The issue was addressed with improved state management. This issue is fixed in iOS 12.4.9. A user may send video in Group FaceTime calls without knowing that they have done so.

7.8 2020-12-08 CVE-2020-27927

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. Processing a maliciously crafted font file may lead to arbitrary code execution.

7.8 2020-12-08 CVE-2020-27926

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.2 and iPadOS 14.2. Processing maliciously crafted web content may lead to arbitrary code execution.

CWE : Common Weakness Enumeration

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
%idName
39% (810) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
11% (225) CWE-200 Information Exposure
9% (190) CWE-20 Improper Input Validation
5% (110) CWE-416 Use After Free
4% (92) CWE-264 Permissions, Privileges, and Access Controls
4% (85) CWE-787 Out-of-bounds Write
3% (76) CWE-125 Out-of-bounds Read
3% (61) CWE-399 Resource Management Errors
2% (57) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')
1% (36) CWE-362 Race Condition
1% (31) CWE-254 Security Features
0% (19) CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflo...
0% (18) CWE-310 Cryptographic Issues
0% (14) CWE-59 Improper Link Resolution Before File Access ('Link Following')
0% (13) CWE-476 NULL Pointer Dereference
0% (13) CWE-400 Uncontrolled Resource Consumption ('Resource Exhaustion')
0% (12) CWE-284 Access Control (Authorization) Issues
0% (12) CWE-189 Numeric Errors
0% (10) CWE-665 Improper Initialization
0% (10) CWE-255 Credentials Management
0% (10) CWE-190 Integer Overflow or Wraparound
0% (10) CWE-19 Data Handling
0% (8) CWE-704 Incorrect Type Conversion or Cast
0% (8) CWE-295 Certificate Issues
0% (7) CWE-287 Improper Authentication

Oval Markup Language : Definitions

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalID Name
oval:org.mitre.oval:def:11009 Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.0, i...
oval:org.mitre.oval:def:7247 DSA-1950 webkit -- several vulnerabilities
oval:org.mitre.oval:def:18395 DSA-1950-1 webkit - several vulnerabilities
oval:org.mitre.oval:def:7061 Apple iTunes JavaScriptCore Page Transitions Denial Of Service Vulnerability
oval:org.mitre.oval:def:11851 Mozilla Firefox/Thunderbird/SeaMonkey 'libpng' Buffer Overflow Vulnerability
oval:org.mitre.oval:def:22383 RHSA-2010:0534: libpng security update (Important)
oval:org.mitre.oval:def:13405 USN-960-1 -- libpng vulnerabilities
oval:org.mitre.oval:def:13338 DSA-2072-1 libpng -- several
oval:org.mitre.oval:def:11512 DSA-2072 libpng -- several vulnerabilities
oval:org.mitre.oval:def:23184 ELSA-2010:0534: libpng security update (Important)
oval:org.mitre.oval:def:21490 RHSA-2010:0607: freetype security update (Important)
oval:org.mitre.oval:def:22937 ELSA-2010:0607: freetype security update (Important)
oval:org.mitre.oval:def:11909 Vulnerability while processing MIME types in Google Chrome before 5.0.375.127
oval:org.mitre.oval:def:12138 Google Chrome Focus Handling Stale Pointer Remote DoS
oval:org.mitre.oval:def:11221 Google Chrome Image Read Access Restriction Same Origin Policy Bypass Remote ...
oval:org.mitre.oval:def:13253 USN-1016-1 -- libxml2 vulnerability
oval:org.mitre.oval:def:12709 DSA-2128-1 libxml2 -- invalid memory access
oval:org.mitre.oval:def:12148 Vulnerability in libxml2 in Google Chrome before 7.0.517.44
oval:org.mitre.oval:def:11916 Double free vulnerability in Google Chrome before 8.0.552.215 via vectors rel...
oval:org.mitre.oval:def:14320 Google Chrome before 9.0.597.94 does not properly perform event handling for ...
oval:org.mitre.oval:def:14543 Google Chrome before 9.0.597.94 does not properly handle anonymous blocks, wh...
oval:org.mitre.oval:def:14322 Unspecified vulnerability in Google Chrome before 9.0.597.107 allows remote a...
oval:org.mitre.oval:def:14422 Google Chrome before 9.0.597.107 does not properly process nodes in Cascading...
oval:org.mitre.oval:def:14404 Google Chrome before 9.0.597.107 does not properly handle tables, which allow...
oval:org.mitre.oval:def:13641 Google Chrome before 9.0.597.107 does not properly render tables, which allow...

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
78547 Google Chrome Tree Builder Remote Overflow
78545 Google Chrome Use-after-free DOM Handling Unspecified Remote DoS
78544 Google Chrome Use-after-free DOM Selections Unspecified Remote DoS
78148 Google Chrome libxml2 parser.c xmlStringLenDecodeEntities() Function Remote O...
77715 Google Chrome Range Handling Use-after-free Remote Code Execution
77711 Google Chrome CSS Property Array Unspecified Remote Memory Corruption
77710 Google Chrome SVG Parsing Out-of-bounds Read Remote DoS
77037 Google Chrome Editing Unspecified Use-after-free Remote Issue
77016 Apple iOS Kernel mmap System Call Flag Combination Verification Remote Code E...
77015 Apple iOS libinfo DNS Name Lookup hostname Handling Lookup Result Spoofing
77014 Apple iOS CoreGraphics Component src/cid/cidload.c FreeType CID-keyed Type 1 ...
77013 Apple iOS for iPad 2 Smart Cover User Data Disclosure
76559 Google Chrome Use-after-free Plug-ins and Editing Remote Code Execution
76558 Google Chrome Javascript URI Cookie Disclosure
76556 Google Chrome Multiple Use-after-free Stale Style Sheet Handling Remote Code ...
76552 Google Chrome Multiple Unspecified Same Origin Policy Bypass
76545 Google Chrome History Handling URL Bar Spoofing
76354 Apple iOS WiFi Credentials Insecure Local File Disclosure
76353 Apple iOS WebKit Inactive DOM Window Handling XSS
76335 Apple iOS UIKit Alerts Maximum Text Layout Length Limit Website tel: URI Hand...
76334 Apple iOS Safari HTTP Content-Disposition Header Weakness Website File Handli...
76333 Apple iOS OfficeImport Excel File Handling Overflow
76332 Apple iOS OfficeImport Word File Handling Overflow
76331 Apple iOS Settings Parental Restrictions Passcode Plaintext Disclosure
76330 Apple iOS Settings Non-English Display Weakness

ExploitDB Exploits

id Description
35440 Mac OS X IOKit Keyboard Driver Root Privilege Escalation
32333 iOS 7 - Kernel Mode Memory Corruption
28081 Apple Safari 6.0.1 for iOS 6.0 and OS X 10.7/8 - Heap Buffer Overflow
14967 Webkit (Apple Safari < 4.1.2/5.0.2 & Google Chrome < 5.0.375.125) M...
14727 Foxit Reader <= 4.0 pdf Jailbreak Exploit
14422 libpng <= 1.4.2 Denial of Service Vulnerability
9160 Multiple Web Browsers Denial of Service Exploit (1 bug to rule them all)

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2012-12-14 Name : SuSE Update for Chromium openSUSE-SU-2012:1637-1 (Chromium)
File : nvt/gb_suse_2012_1637_1.nasl
2012-12-13 Name : SuSE Update for update openSUSE-SU-2012:0374-1 (update)
File : nvt/gb_suse_2012_0374_1.nasl
2012-12-13 Name : SuSE Update for update openSUSE-SU-2012:0466-1 (update)
File : nvt/gb_suse_2012_0466_1.nasl
2012-12-13 Name : SuSE Update for update openSUSE-SU-2012:0656-1 (update)
File : nvt/gb_suse_2012_0656_1.nasl
2012-12-13 Name : SuSE Update for chromium openSUSE-SU-2012:1215-1 (chromium)
File : nvt/gb_suse_2012_1215_1.nasl
2012-12-13 Name : SuSE Update for update openSUSE-SU-2012:1376-1 (update)
File : nvt/gb_suse_2012_1376_1.nasl
2012-12-06 Name : Ubuntu Update for libxml2 USN-1656-1
File : nvt/gb_ubuntu_USN_1656_1.nasl
2012-12-04 Name : Debian Security Advisory DSA 2580-1 (libxml2)
File : nvt/deb_2580_1.nasl
2012-12-04 Name : FreeBSD Ports: chromium
File : nvt/freebsd_chromium24.nasl
2012-12-04 Name : CentOS Update for libxml2 CESA-2012:1512 centos5
File : nvt/gb_CESA-2012_1512_libxml2_centos5.nasl
2012-12-04 Name : CentOS Update for libxml2 CESA-2012:1512 centos6
File : nvt/gb_CESA-2012_1512_libxml2_centos6.nasl
2012-12-04 Name : RedHat Update for libxml2 RHSA-2012:1512-01
File : nvt/gb_RHSA-2012_1512-01_libxml2.nasl
2012-12-04 Name : Google Chrome Multiple Vulnerabilities-01 Dec2012 (Linux)
File : nvt/gb_google_chrome_mult_vuln01_dec12_lin.nasl
2012-12-04 Name : Google Chrome Multiple Vulnerabilities-01 Dec2012 (Mac OS X)
File : nvt/gb_google_chrome_mult_vuln01_dec12_macosx.nasl
2012-12-04 Name : Google Chrome Multiple Vulnerabilities-01 Dec2012 (Windows)
File : nvt/gb_google_chrome_mult_vuln01_dec12_win.nasl
2012-12-04 Name : Mandriva Update for libxml2 MDVSA-2012:176 (libxml2)
File : nvt/gb_mandriva_MDVSA_2012_176.nasl
2012-11-02 Name : Apple Safari Multiple Vulnerabilities (APPLE-SA-2012-09-19-3)
File : nvt/gb_apple_safari_mult_vuln_nov12_macosx.nasl
2012-10-26 Name : Ubuntu Update for webkit USN-1617-1
File : nvt/gb_ubuntu_USN_1617_1.nasl
2012-10-22 Name : Gentoo Security Advisory GLSA 201210-07 (chromium)
File : nvt/glsa_201210_07.nasl
2012-10-15 Name : Google Chrome Multiple Vulnerabilities-02 Oct12 (Linux)
File : nvt/gb_google_chrome_mult_vuln02_oct12_lin.nasl
2012-10-15 Name : Google Chrome Multiple Vulnerabilities-02 Oct12 (Mac OS X)
File : nvt/gb_google_chrome_mult_vuln02_oct12_macosx.nasl
2012-10-15 Name : Google Chrome Multiple Vulnerabilities-02 Oct12 (Windows)
File : nvt/gb_google_chrome_mult_vuln02_oct12_win.nasl
2012-10-13 Name : Debian Security Advisory DSA 2555-1 (libxslt)
File : nvt/deb_2555_1.nasl
2012-10-13 Name : FreeBSD Ports: chromium
File : nvt/freebsd_chromium20.nasl
2012-10-12 Name : Mandriva Update for libxslt MDVSA-2012:164 (libxslt)
File : nvt/gb_mandriva_MDVSA_2012_164.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2015-A-0222 Multiple Security Vulnerabilities in Apple iOS
Severity: Category I - VMSKEY: V0061471
2015-A-0199 Multiple Vulnerabilities in Apple Mac OS X
Severity: Category I - VMSKEY: V0061337
2015-A-0158 Multiple Vulnerabilities in Oracle Java SE
Severity: Category I - VMSKEY: V0061089
2014-B-0083 Multiple Vulnerabilities in Apple iOS
Severity: Category I - VMSKEY: V0052903
2014-B-0048 Multiple Security Vulnerabilities in Apple iOS
Severity: Category I - VMSKEY: V0050015
2014-A-0059 Apple Mac OS X Security Update 2014-002
Severity: Category I - VMSKEY: V0049741
2014-B-0024 Multiple Security Vulnerabilities in Apple iOS
Severity: Category I - VMSKEY: V0046157
2014-B-0017 Apple iOS Security Bypass Vulnerability
Severity: Category I - VMSKEY: V0044529
2014-A-0030 Apple Mac OS X Security Update 2014-001
Severity: Category I - VMSKEY: V0044547
2013-A-0179 Apple Mac OS X Security Update 2013-004
Severity: Category I - VMSKEY: V0040373
2013-A-0031 Multiple Security Vulnerabilities in VMware ESX 4.1 and ESXi 4.1
Severity: Category I - VMSKEY: V0036787
2012-A-0153 Multiple Vulnerabilities in VMware ESX 4.0 and ESXi 4.0
Severity: Category I - VMSKEY: V0033884
2012-A-0148 Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity: Category I - VMSKEY: V0033794
2012-A-0073 Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity: Category I - VMSKEY: V0032171

Snort® IPS/IDS

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
Date Description
2020-11-19 Apple Safari WebKit Webcore SVGAnimateElementBase use after free attempt
RuleID : 56044 - Type : BROWSER-WEBKIT - Revision : 1
2020-11-19 Apple Safari WebKit Webcore SVGAnimateElementBase use after free attempt
RuleID : 56043 - Type : BROWSER-WEBKIT - Revision : 1
2020-11-18 Apple Safari WebKit JSPropertyNameEnumeration type confusion attempt
RuleID : 56009 - Type : BROWSER-WEBKIT - Revision : 1
2020-11-18 Apple Safari WebKit JSPropertyNameEnumeration type confusion attempt
RuleID : 56008 - Type : BROWSER-WEBKIT - Revision : 1
2020-10-22 Apple Safari WebKit HTMLFrameElementBase isURLAllowed Subframe exploit attempt
RuleID : 55799 - Type : FILE-OTHER - Revision : 1
2020-10-22 Apple Safari WebKit HTMLFrameElementBase isURLAllowed Subframe exploit attempt
RuleID : 55798 - Type : FILE-OTHER - Revision : 1
2020-10-06 WebKit AudioArray allocate out of bounds access attempt
RuleID : 55013 - Type : BROWSER-WEBKIT - Revision : 1
2020-10-06 WebKit AudioArray allocate out of bounds access attempt
RuleID : 55012 - Type : BROWSER-WEBKIT - Revision : 1
2020-09-02 WebKit JIT compiler common subexpression elimination out of bounds access att...
RuleID : 54666 - Type : BROWSER-WEBKIT - Revision : 2
2020-09-02 WebKit JIT compiler common subexpression elimination out of bounds access att...
RuleID : 54665 - Type : BROWSER-WEBKIT - Revision : 2
2020-06-13 WebKit use-after-free remote code execution attempt
RuleID : 53976 - Type : BROWSER-WEBKIT - Revision : 1
2020-04-21 Apple Safari WebKit JavaScript engine type confusion attempt
RuleID : 53474 - Type : BROWSER-WEBKIT - Revision : 1
2020-04-21 Apple Safari WebKit JavaScript engine type confusion attempt
RuleID : 53473 - Type : BROWSER-WEBKIT - Revision : 1
2020-03-19 Apple Safari WebKit cached page memory corruption attempt
RuleID : 53122 - Type : BROWSER-WEBKIT - Revision : 1
2020-03-19 Apple Safari WebKit cached page memory corruption attempt
RuleID : 53121 - Type : BROWSER-WEBKIT - Revision : 1
2020-03-17 Apple Safari Webkit WebCore memory corruption attempt
RuleID : 53101 - Type : BROWSER-WEBKIT - Revision : 1
2020-03-17 Apple Safari Webkit WebCore memory corruption attempt
RuleID : 53100 - Type : BROWSER-WEBKIT - Revision : 1
2020-01-21 Apple Webkit updateMinimumColumnHeight use-after-free attempt
RuleID : 52486 - Type : BROWSER-WEBKIT - Revision : 1
2020-01-21 Apple Webkit updateMinimumColumnHeight use-after-free attempt
RuleID : 52485 - Type : BROWSER-WEBKIT - Revision : 1
2020-01-03 Apple Safari WebKit out-of-bounds read attempt
RuleID : 52342 - Type : BROWSER-WEBKIT - Revision : 1
2020-01-03 Apple Safari WebKit out-of-bounds read attempt
RuleID : 52341 - Type : BROWSER-WEBKIT - Revision : 1
2020-01-03 Apple Safari WebKit memory corruption attempt
RuleID : 52316 - Type : BROWSER-WEBKIT - Revision : 1
2020-01-03 Apple Safari WebKit memory corruption attempt
RuleID : 52315 - Type : BROWSER-WEBKIT - Revision : 1
2020-01-03 Apple Safari WebKit memory corruption attempt
RuleID : 52314 - Type : BROWSER-WEBKIT - Revision : 1
2020-01-03 Apple Safari WebKit memory corruption attempt
RuleID : 52313 - Type : BROWSER-WEBKIT - Revision : 1

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2019-01-14 Name: The remote Debian host is missing a security update.
File: debian_DLA-1633.nasl - Type: ACT_GATHER_INFO
2019-01-11 Name: The remote device is missing a vendor-supplied security patch.
File: juniper_jsa10916.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-118b9abf99.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-1a8582a7ee.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-499f2dbc96.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-509fc4a5c8.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-97c58e29e4.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-a1f37d2f08.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-e2e8a07a01.nasl - Type: ACT_GATHER_INFO
2018-12-21 Name: The remote Apple TV device is affected by multiple vulnerabilities.
File: appletv_12_1_1.nasl - Type: ACT_GATHER_INFO
2018-12-21 Name: The remote host is missing a macOS update that fixes multiple security vulner...
File: macos_10_14_2.nasl - Type: ACT_GATHER_INFO
2018-12-21 Name: The remote host is missing a macOS or Mac OS X security update that fixes mul...
File: macosx_SecUpd2018-006.nasl - Type: ACT_GATHER_INFO
2018-12-21 Name: The remote host is missing a macOS security update that fixes multiple vulner...
File: macosx_SecUpd_10_13_6_2018-003.nasl - Type: ACT_GATHER_INFO
2018-12-19 Name: An application installed on remote host is affected by multiple vulnerabilities
File: itunes_12_9_2.nasl - Type: ACT_GATHER_INFO
2018-12-07 Name: A web browser installed on the remote macOS or Mac OS X host is affected by m...
File: macosx_Safari12_0_2.nasl - Type: ACT_GATHER_INFO
2018-12-03 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201812-04.nasl - Type: ACT_GATHER_INFO
2018-11-13 Name: The remote Debian host is missing a security update.
File: debian_DLA-1573.nasl - Type: ACT_GATHER_INFO
2018-11-02 Name: The remote Apple TV device is affected by multiple vulnerabilities.
File: appletv_12_1.nasl - Type: ACT_GATHER_INFO
2018-11-02 Name: An application installed on the remote host is affected by multiple vulnerabi...
File: itunes_12_9_1.nasl - Type: ACT_GATHER_INFO
2018-11-02 Name: An application installed on the remote host is affected by multiple vulnerabi...
File: itunes_12_9_1_banner.nasl - Type: ACT_GATHER_INFO
2018-10-31 Name: The remote host is missing a macOS update that fixes multiple security vulner...
File: macos_10_14_1.nasl - Type: ACT_GATHER_INFO
2018-10-31 Name: A web browser installed on the remote macOS or Mac OS X host is affected by m...
File: macosx_Safari12_0_1.nasl - Type: ACT_GATHER_INFO
2018-10-31 Name: The remote host is missing a macOS or Mac OS X security update that fixes mul...
File: macosx_SecUpd2018-005.nasl - Type: ACT_GATHER_INFO
2018-10-31 Name: The remote host is missing a macOS security update that fixes multiple vulner...
File: macosx_SecUpd_10_13_6_2018-002.nasl - Type: ACT_GATHER_INFO
2018-10-18 Name: The remote host is missing a macOS update that fixes multiple security vulner...
File: macos_10_14.nasl - Type: ACT_GATHER_INFO