CVE-2016-4730
- EPSS 2.66%
- Veröffentlicht 25.09.2016 10:59:34
- Zuletzt bearbeitet 06.05.2026 22:30:45
WebKit in Apple iOS before 10, Safari before 10, and tvOS before 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-4611, CVE-2016-4733...
CVE-2016-4729
- EPSS 2.73%
- Veröffentlicht 25.09.2016 10:59:33
- Zuletzt bearbeitet 06.05.2026 22:30:45
WebKit in Apple iOS before 10 and Safari before 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-4731.
CVE-2016-4728
- EPSS 2.42%
- Veröffentlicht 25.09.2016 10:59:32
- Zuletzt bearbeitet 06.05.2026 22:30:45
WebKit in Apple iOS before 10, tvOS before 10, iTunes before 12.5.1 on Windows, and Safari before 10 mishandles error prototypes, which allows remote attackers to execute arbitrary code via a crafted web site.
CVE-2016-4726
- EPSS 1.57%
- Veröffentlicht 25.09.2016 10:59:30
- Zuletzt bearbeitet 06.05.2026 22:30:45
IOAcceleratorFamily in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-4725
- EPSS 1.5%
- Veröffentlicht 25.09.2016 10:59:29
- Zuletzt bearbeitet 06.05.2026 22:30:45
IOAcceleratorFamily in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (memory corruption) via a crafted web site.
CVE-2016-4724
- EPSS 1.44%
- Veröffentlicht 25.09.2016 10:59:28
- Zuletzt bearbeitet 06.05.2026 22:30:45
IOAcceleratorFamily in Apple iOS before 10 and OS X before 10.12 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app.
CVE-2016-4722
- EPSS 1.69%
- Veröffentlicht 25.09.2016 10:59:26
- Zuletzt bearbeitet 06.05.2026 22:30:45
The IDS - Connectivity component in Apple iOS before 10 and OS X before 10.12 allows man-in-the-middle attackers to conduct Call Relay spoofing attacks and cause a denial of service via unspecified vectors.
CVE-2016-4718
- EPSS 2.58%
- Veröffentlicht 25.09.2016 10:59:25
- Zuletzt bearbeitet 06.05.2026 22:30:45
Buffer overflow in FontParser in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to obtain sensitive information from process memory via a crafted font file.
CVE-2016-4712
- EPSS 1.63%
- Veröffentlicht 25.09.2016 10:59:19
- Zuletzt bearbeitet 06.05.2026 22:30:45
CoreCrypto in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via a crafted app.
CVE-2016-4711
- EPSS 1.61%
- Veröffentlicht 25.09.2016 10:59:18
- Zuletzt bearbeitet 06.05.2026 22:30:45
CCrypt in corecrypto in CommonCrypto in Apple iOS before 10 and OS X before 10.12 allows attackers to discover cleartext information by leveraging a function call that specifies the same buffer for input and output.