Vulnerabilities (CVE)

Filtered by vendor Apple Subscribe
Filtered by product Ipad
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-3955 1 Apple 4 Ipad, Ipad2, Ipad Mini and 1 more 2024-11-21 6.2 MEDIUM N/A
The get_xattrinfo function in the XNU kernel in Apple iOS 5.x and 6.x through 6.1.3 on iPad devices does not properly validate the header of an AppleDouble file, which might allow local users to cause a denial of service (memory corruption) or have unspecified other impact via an invalid file on an msdosfs filesystem.
CVE-2012-2648 2 Apple, Goodiware 4 Ipad, Iphone Os, Ipod Touch and 1 more 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the GoodReader app 3.16 and earlier for iOS on the iPad, and 3.15.1 and earlier for iOS on the iPhone and iPod touch, allows remote attackers to inject arbitrary web script or HTML via vectors involving use of this app in conjunction with a web browser.
CVE-2011-1344 1 Apple 5 Ipad, Iphone, Iphone Os and 2 more 2024-11-21 6.8 MEDIUM N/A
Use-after-free vulnerability in WebKit, as used in Apple Safari before 5.0.5; iOS before 4.3.2 for iPhone, iPod, and iPad; iOS before 4.2.7 for iPhone 4 (CDMA); and possibly other products allows remote attackers to execute arbitrary code by adding children to a WBR tag and then removing the tag, related to text nodes, as demonstrated by Chaouki Bekrar during a Pwn2Own competition at CanSecWest 2011.
CVE-2010-3832 1 Apple 2 Ipad, Iphone Os 2024-11-21 6.8 MEDIUM N/A
Heap-based buffer overflow in the GSM mobility management implementation in Telephony in Apple iOS before 4.2 on the iPhone and iPad allows remote attackers to execute arbitrary code on the baseband processor via a crafted Temporary Mobile Subscriber Identity (TMSI) field.
CVE-2010-2973 1 Apple 3 Ipad, Iphone Os, Ipod Touch 2024-11-21 6.9 MEDIUM N/A
Integer overflow in IOSurface in Apple iOS before 4.0.2 on the iPhone and iPod touch, and before 3.2.2 on the iPad, allows local users to gain privileges via vectors involving IOSurface properties, as demonstrated by JailbreakMe.
CVE-2010-2711 2 Apple, Hp 2 Ipad, Magcloud 2024-11-21 6.4 MEDIUM N/A
Unspecified vulnerability in the HP MagCloud app before 1.0.5 for the iPad allows remote attackers to read and modify MagCloud application data via unknown vectors.