Type Confusion Vulnerability in IOSurface

CVE-2015-1061 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

IOSurface in Apple iOS before 8.2, Apple OS X through 10.10.2, and Apple TV before 7.1 allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages "type confusion" during serialized-object handling.

Learn more about our Attack Surface Assessment.