|
2571
|
7.8
9.3
|
HIGH
Local
|
IOMobileFrameBuffer in Apple iOS before 9.3.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
|
CWE-264 CWE-119
Permissions, Privileges, and Access Controls Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-4654
|
cpe:2.3:o:apple:iphone_os:9.3.3:*
|
|
|
|
|
2024-11-21 11:52
2016-08-19
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2572
|
8.8
6.8
|
HIGH
Network
|
Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of service or possibly have unspecified other impact via…
|
CWE-416
Use After Free
|
CVE-2016-5131
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
10.0
|
2024-11-21 11:53
2016-07-24
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2573
|
7.8
7.2
|
HIGH
Local
|
The kernel in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspe…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-4653
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
9.3.3
|
2024-11-21 11:52
2016-07-22
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2574
|
6.1
4.3
|
MEDIUM
Network
|
Cross-site scripting (XSS) vulnerability in the WebKit JavaScript bindings in Apple iOS before 9.3.3 and Safari before 9.1.2 allows remote attackers to inject arbitrary web script or HTML via a craft…
|
CWE-79
Cross-site Scripting
|
CVE-2016-4651
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
9.3.2
|
|
|
2024-11-21 11:52
2016-07-22
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2575
|
8.8
6.8
|
HIGH
Network
|
CoreGraphics in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corrupt…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-4637
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
9.3.3
|
2024-11-21 11:52
2016-07-22
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2576
|
5.3
3.5
|
MEDIUM
Network
|
FaceTime in Apple iOS before 9.3.3 and OS X before 10.11.6 allows man-in-the-middle attackers to spoof relayed-call termination, and obtain sensitive audio information in opportunistic circumstances,…
|
CWE-200
Information Exposure
|
CVE-2016-4635
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
9.3.2
|
|
|
2024-11-21 11:52
2016-07-22
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2577
|
7.5
5.0
|
HIGH
Network
|
ImageIO in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-4632
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
9.3.3
|
2024-11-21 11:52
2016-07-22
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2578
|
8.8
6.8
|
HIGH
Network
|
ImageIO in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-4631
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
9.3.3
|
2024-11-21 11:52
2016-07-22
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2579
|
5.5
4.9
|
MEDIUM
Local
|
IOAcceleratorFamily in Apple iOS before 9.3.3 and watchOS before 2.2.2 allows local users to obtain sensitive information from kernel memory or cause a denial of service (out-of-bounds read) via unsp…
|
CWE-200 CWE-125
Information Exposure Out-of-bounds Read
|
CVE-2016-4628
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
9.3.2
|
|
|
2024-11-21 11:52
2016-07-22
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2580
|
7.8
7.2
|
HIGH
Local
|
IOAcceleratorFamily in Apple iOS before 9.3.3, tvOS before 9.2.2, and watchOS before 2.2.2 allows local users to gain privileges or cause a denial of service (NULL pointer dereference) via unspecifie…
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-4627
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
9.3.3
|
2024-11-21 11:52
2016-07-22
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|