|
267501
|
7.5 |
HIGH
Network
|
apple
|
mac_os_x
|
Tcl in Apple OS X before 10.11.5 allows remote attackers to obtain sensitive information by leveraging SSLv2 support.
|
CWE-200
Information Exposure
|
CVE-2016-1853
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267502
|
2.4 |
LOW
Physics
|
apple
|
iphone_os
|
Siri in Apple iOS before 9.3.2 does not block data detectors within results in the lock-screen state, which allows physically proximate attackers to obtain sensitive contact and photo information via…
|
CWE-200
Information Exposure
|
CVE-2016-1852
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267503
|
4.6 |
MEDIUM
Physics
|
apple
|
mac_os_x
|
The Screen Lock feature in Apple OS X before 10.11.5 mishandles password profiles, which allows physically proximate attackers to reset expired passwords in the lock-screen state via unspecified vect…
|
NVD-CWE-noinfo
|
CVE-2016-1851
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267504
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
SceneKit in Apple OS X before 10.11.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1850
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267505
|
3.3 |
LOW
Local
|
apple
|
safari
iphone_os
|
The "Clear History and Website Data" feature in Apple Safari before 9.1.1, as used in iOS before 9.3.2 and other products, mishandles the deletion of browsing history, which might allow local users t…
|
CWE-200
Information Exposure
|
CVE-2016-1849
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267506
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
QuickTime in Apple OS X before 10.11.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1848
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267507
|
8.8 |
HIGH
Network
|
apple
|
iphone_os
mac_os_x
tvos
watchos
|
OpenGL, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory cor…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1847
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267508
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
The nvCommandQueue::GetHandleIndex method in the NVIDIA Graphics Drivers subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1846
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267509
|
5.3 |
MEDIUM
Network
|
apple
|
mac_os_x
|
The Messages component in Apple OS X before 10.11.5 mishandles roster changes, which allows remote attackers to modify contact lists via unspecified vectors.
|
CWE-284
Improper Access Control
|
CVE-2016-1844
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267510
|
7.5 |
HIGH
Network
|
apple
|
mac_os_x
|
The Messages component in Apple OS X before 10.11.5 mishandles filename encoding, which allows remote attackers to obtain sensitive information via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2016-1843
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
