Vulnerabilities (CVE)

Filtered by vendor Apple Subscribe
Filtered by product Ipad2
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-3955 1 Apple 4 Ipad, Ipad2, Ipad Mini and 1 more 2024-11-21 6.2 MEDIUM N/A
The get_xattrinfo function in the XNU kernel in Apple iOS 5.x and 6.x through 6.1.3 on iPad devices does not properly validate the header of an AppleDouble file, which might allow local users to cause a denial of service (memory corruption) or have unspecified other impact via an invalid file on an msdosfs filesystem.
CVE-2012-2899 2 Apple, Google 2 Ipad2, Chrome 2024-11-21 4.3 MEDIUM N/A
Google Chrome before 21.0.1180.82 on iOS makes certain incorrect calls to WebView methods that trigger use of an applewebdata: URL, which allows remote attackers to bypass the Same Origin Policy and conduct Universal XSS (UXSS) attacks via vectors involving the document.write method.
CVE-2012-2898 2 Apple, Google 2 Ipad2, Chrome 2024-11-21 5.0 MEDIUM N/A
Google Chrome before 21.0.1180.82 on iOS on iPad devices allows remote attackers to spoof the Omnibox URL via vectors involving SSL error messages, a related issue to CVE-2012-0674.
CVE-2011-3440 1 Apple 2 Ipad2, Iphone Os 2024-11-21 1.2 LOW N/A
The Passcode Lock feature in Apple iOS before 5.0.1 on the iPad 2 does not properly implement the locked state, which allows physically proximate attackers to access data by opening a Smart Cover during power-off confirmation.