| Max CVSS | 9.3 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-4771 | 4.3 |
The kernel in Apple iOS before 10 and OS X before 10.12 allows local users to bypass intended file-access restrictions via a crafted directory pathname.
|
30-07-2017 - 01:29 | 25-09-2016 - 11:00 | |
| CVE-2016-4750 | 9.3 |
S2 Camera in Apple iOS before 10 and OS X before 10.12 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
|
30-07-2017 - 01:29 | 25-09-2016 - 10:59 | |
| CVE-2016-4722 | 7.1 |
The IDS - Connectivity component in Apple iOS before 10 and OS X before 10.12 allows man-in-the-middle attackers to conduct Call Relay spoofing attacks and cause a denial of service via unspecified vectors.
|
30-07-2017 - 01:29 | 25-09-2016 - 10:59 | |
| CVE-2016-4711 | 5.0 |
CCrypt in corecrypto in CommonCrypto in Apple iOS before 10 and OS X before 10.12 allows attackers to discover cleartext information by leveraging a function call that specifies the same buffer for input and output.
|
30-07-2017 - 01:29 | 25-09-2016 - 10:59 | |
| CVE-2016-4707 | 2.1 |
CFNetwork in Apple iOS before 10 and OS X before 10.12 mishandles Local Storage deletion, which allows local users to discover the visited web sites of arbitrary users via unspecified vectors.
|
30-07-2017 - 01:29 | 25-09-2016 - 10:59 | |
| CVE-2016-4724 | 9.3 |
IOAcceleratorFamily in Apple iOS before 10 and OS X before 10.12 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app.
|
30-07-2017 - 01:29 | 25-09-2016 - 10:59 | |
| CVE-2016-4698 | 9.3 |
AppleMobileFileIntegrity in Apple iOS before 10 and OS X before 10.12 mishandles process entitlement and Team ID values in the task port inheritance policy, which allows attackers to execute arbitrary code in a privileged context via a crafted app.
|
30-07-2017 - 01:29 | 25-09-2016 - 10:59 |