Apple

iPhone OS

3904 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2016-1775

  • EPSS 0.98%
  • Veröffentlicht 24.03.2016 01:59:42
  • Zuletzt bearbeitet 12.04.2025 10:46:40

TrueTypeScaler in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file.

7.5

CVE-2016-1766

  • EPSS 0.15%
  • Veröffentlicht 24.03.2016 01:59:34
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Profiles component in Apple iOS before 9.3 does not properly validate certificates, which allows attackers to spoof an MDM profile trust relationship via unspecified vectors.

3.5

CVE-2016-1763

  • EPSS 0.21%
  • Veröffentlicht 24.03.2016 01:59:31
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Messages in Apple iOS before 9.3 does not ensure that an auto-fill action applies to the intended message thread, which allows remote authenticated users to obtain sensitive information by providing a crafted sms: URL and reading a thread.

8.1

CVE-2016-1762

Exploit
  • EPSS 8.58%
  • Veröffentlicht 24.03.2016 01:59:30
  • Zuletzt bearbeitet 17.12.2025 22:15:52

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

10

CVE-2016-1761

  • EPSS 13.95%
  • Veröffentlicht 24.03.2016 01:59:29
  • Zuletzt bearbeitet 12.04.2025 10:46:40

libxml2 in Apple iOS before 9.3, OS X before 10.11.4, and watchOS before 2.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

4.3

CVE-2016-1758

  • EPSS 0.28%
  • Veröffentlicht 24.03.2016 01:59:27
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The kernel in Apple iOS before 9.3 and OS X before 10.11.4 allows attackers to obtain sensitive memory-layout information or cause a denial of service (out-of-bounds read) via a crafted app.

9.3

CVE-2016-1757

  • EPSS 58.45%
  • Veröffentlicht 24.03.2016 01:59:26
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Race condition in the kernel in Apple iOS before 9.3 and OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context via a crafted app.

9.3

CVE-2016-1756

  • EPSS 0.19%
  • Veröffentlicht 24.03.2016 01:59:25
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The kernel in Apple iOS before 9.3 and OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app.

9.3

CVE-2016-1755

  • EPSS 4.52%
  • Veröffentlicht 24.03.2016 01:59:24
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulner...

9.3

CVE-2016-1753

  • EPSS 0.48%
  • Veröffentlicht 24.03.2016 01:59:23
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple integer overflows in the kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allow attackers to execute arbitrary code in a privileged context via a crafted app.