CVE-2016-1863
- EPSS 1.05%
- Veröffentlicht 22.07.2016 02:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
The kernel in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-...
CVE-2015-7988
- EPSS 4.82%
- Veröffentlicht 26.06.2016 01:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
The handle_regservice_request function in mDNSResponder before 625.41.2 allows remote attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via unspecified vectors.
CVE-2015-7987
- EPSS 2.51%
- Veröffentlicht 26.06.2016 01:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple buffer overflows in mDNSResponder before 625.41.2 allow remote attackers to read or write to out-of-bounds memory locations via vectors involving the (1) GetValueForIPv4Addr, (2) GetValueForMACAddr, (3) rfc3110_import, or (4) CopyNSEC3Resour...
- EPSS 7.04%
- Veröffentlicht 09.06.2016 16:59:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
Format string vulnerability in libxml2 before 2.9.4 allows attackers to have unspecified impact via format string specifiers in unknown vectors.
CVE-2016-4447
- EPSS 13.98%
- Veröffentlicht 09.06.2016 16:59:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-dependent attackers to cause a denial of service (heap-based buffer underread and application crash) via a crafted file, involving xmlParseName.
CVE-2016-1847
- EPSS 2.04%
- Veröffentlicht 20.05.2016 11:00:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
OpenGL, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.
CVE-2016-1842
- EPSS 2.27%
- Veröffentlicht 20.05.2016 10:59:56
- Zuletzt bearbeitet 06.05.2026 22:30:45
MapKit in Apple iOS before 9.3.2, OS X before 10.11.5, and watchOS before 2.2.1 does not use HTTPS for shared links, which allows remote attackers to obtain sensitive information by sniffing the network for HTTP traffic.
CVE-2016-1841
- EPSS 2.36%
- Veröffentlicht 20.05.2016 10:59:55
- Zuletzt bearbeitet 06.05.2026 22:30:45
libxslt, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.
CVE-2016-1840
- EPSS 3.24%
- Veröffentlicht 20.05.2016 10:59:54
- Zuletzt bearbeitet 06.05.2026 22:30:45
Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause...
CVE-2016-1839
- EPSS 7.35%
- Veröffentlicht 20.05.2016 10:59:53
- Zuletzt bearbeitet 06.05.2026 22:30:45
The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a craft...